#VU48579 Infinite loop in musl libc - CVE-2020-28928

Cybersecurity Help s.r.o.

Published: 2020-11-20 | Updated: 2021-04-23

Vulnerability identifier: #VU48579

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2020-28928

CWE-ID: CWE-835

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
musl libc
Universal components / Libraries / Libraries used by multiple products

Vendor: GNU

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the wcsnrtombs() function in musl libc. A remote attacker can consume all available system resources and cause denial of service conditions.

Mitigation
Install update from vendor's website.

Vulnerable software versions

musl libc: 0.5.0 - 1.2.1

External links
https://seclists.org/oss-sec/2020/q4/152
https://musl.libc.org/releases.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Juniper Networks Junos cRPD

Multiple vulnerabilities in Juniper Cloud Native Router

Ubuntu update for musl

Multiple vulnerabilities in Dell EMC Unisphere for PowerMax and Dell EMC Solutions Enabler

Multiple vulnerabilities in Dell EMC Data Protection Search and Dell EMC PowerProtect Data Protection

Multiple vulnerabilities in IBM Security Verify Bridge

Multiple vulnerabilities in Oracle GraalVM Enterprise Edition

Fedora 34 update for musl

Fedora 33 update for musl

Open Enclave SDK update for musl libc