openEuler 20.03 LTS SP1 update for thrift

Published: 2021-02-04

Risk	Medium
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2019-0205 CVE-2019-0210
CWE-ID	CWE-835 CWE-20
Exploitation vector	Network
Public exploit	N/A
Vulnerable software	openEuler Operating systems & Components / Operating system libthrift-javadoc Operating systems & Components / Operating system package or component perl-thrift Operating systems & Components / Operating system package or component libthrift-java Operating systems & Components / Operating system package or component fb303-java Operating systems & Components / Operating system package or component thrift-debuginfo Operating systems & Components / Operating system package or component python3-thrift Operating systems & Components / Operating system package or component thrift-devel Operating systems & Components / Operating system package or component thrift-debugsource Operating systems & Components / Operating system package or component python3-fb303 Operating systems & Components / Operating system package or component fb303-devel Operating systems & Components / Operating system package or component thrift-glib Operating systems & Components / Operating system package or component thrift-qt Operating systems & Components / Operating system package or component fb303 Operating systems & Components / Operating system package or component thrift Operating systems & Components / Operating system package or component
Vendor	openEuler

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Infinite loop

EUVDB-ID: #VU22565

Risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-0205

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop when processing user-supplied input. A remote attacker can pass malicious input to the application and consume all available system resources or cause denial of service conditions.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 20.03 LTS SP1

libthrift-javadoc: before 0.10.0-3

perl-thrift: before 0.10.0-3

libthrift-java: before 0.10.0-3

fb303-java: before 0.10.0-3

thrift-debuginfo: before 0.10.0-3

python3-thrift: before 0.10.0-3

thrift-devel: before 0.10.0-3

thrift-debugsource: before 0.10.0-3

python3-fb303: before 0.10.0-3

fb303-devel: before 0.10.0-3

thrift-glib: before 0.10.0-3

thrift-qt: before 0.10.0-3

fb303: before 0.10.0-3

thrift: before 0.10.0-3

CPE2.3

External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2021-1017

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Input validation error

EUVDB-ID: #VU26050