SB2024120539 - Multiple denial of service vulnerabilities in Zabbix

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Use-after-free (CVE-ID: CVE-2024-42331)

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the es_browser_ctor() method in src/libs/zbxembed/browser.c in the the Duktape JavaScript engine. A remote user can pass specially crafted input to the application and perform denial of service (DoS) attack.

2) Input validation error (CVE-ID: CVE-2024-42328)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input within the curl_write_cb() function in webdriver. A remote attacker can send a specially crafted HTTP response to the application and perform a denial of service (DoS) attack.

3) Input validation error (CVE-ID: CVE-2024-42329)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input within the webdriver_session_query() function in webdriver. A remote attacker can pass a specially crafted HTTP response to the service and perform a denial of service (DoS) attack.

4) Use-after-free (CVE-ID: CVE-2024-42326)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the es_browser_get_variant() function in browser.c. A remote attacker can send a specially crafted response to the application and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://support.zabbix.com/browse/ZBX-25627
• https://support.zabbix.com/browse/ZBX-25624
• https://support.zabbix.com/browse/ZBX-25625
• https://support.zabbix.com/browse/ZBX-25622