Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM82A9F24907A9B5CA433EF30634767972B95813695A7590E7216F059F1BAF1D8D
HistoryDec 20, 2019 - 8:47 a.m.

Security Bulletin: Multiple vulenerabilities CVE-2019-0205, CVE-2019-0210 in thrift package

2019-12-2008:47:33
www.ibm.com
12

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Summary

Multiple vulenerabilities CVE-2019-0205, CVE-2019-0210 in thrift package

Vulnerability Details

CVEID:CVE-2019-0205
**DESCRIPTION:**In Apache Thrift all versions up to and including 0.12.0, a server or client may run into an endless loop when feed with specific input data. Because the issue had already been partially fixed in version 0.11.0, depending on the installed version it affects only certain language bindings.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/169460 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2019-0210
**DESCRIPTION:**In Apache Thrift 0.9.3 to 0.12.0, a server implemented in Go using TJSONProtocol or TSimpleJSONProtocol may panic when feed with invalid input data.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/169459 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Watson Machine Learning CE 1.6.0
IBM Watson Machine Learning CE 1.6.1
IBM Watson Machine Learning CE 1.6.2

Remediation/Fixes

Affected Product(s) Version(s) APAR Remediation / First Fix
IBM Watson Machine Learning CE 1.6.2 None thrift-cpp 0.12.0 580.gf96fa62 ibmdl/export/pub/software/server/ibm-ai/conda

Fix: thrift-cpp version updated to 0.12.0 for CVE-2019-0210 and including code fix/changes for CVE-2019-0205.

Before installation, verify that the specific build of cudf is available in the conda channel using the command:
conda search cudf=0.9.0 -c <https://public.dhe.ibm.com/ibmdl/export/pub/software/server/ibm-ai/conda/&gt;

Output of the above command should contain the following (in addition to other builds of cudf):

Name Version Build Channel

cudf 0.9.0 cuda10.1_py36_626.gddcad2d ibmdl/export/pub/software/server/ibm-ai/conda
cudf 0.9.0 cuda10.1_py37_626.gddcad2d ibmdl/export/pub/software/server/ibm-ai/conda

Few other packages that will be updated automatically to the following versions when the above build of cudf is installed:
arrow-cpp 0.15.1 py36_603.g702c836 ibmdl/export/pub/software/server/ibm-ai/conda
arrow-cpp 0.15.1 py37_603.g702c836 ibmdl/export/pub/software/server/ibm-ai/conda
pyarrow 0.15.1 py36_609.g3a6717a ibmdl/export/pub/software/server/ibm-ai/conda
pyarrow 0.15.1 py37_609.g3a6717a ibmdl/export/pub/software/server/ibm-ai/conda
parquet-cpp 1.5.1 579.g6eecc60 ibmdl/export/pub/software/server/ibm-ai/conda
libcudf 0.9.0 cuda10.1_609.g113236a ibmdl/export/pub/software/server/ibm-ai/conda
thrift-cpp 0.12.0 580.gf96fa62 ibmdl/export/pub/software/server/ibm-ai/conda

Installation of fix: Install the fix for python3.6 conda environment using the following command.
conda install -c <https://public.dhe.ibm.com/ibmdl/export/pub/software/server/ibm-ai/conda/&gt; cudf=0.9.0=cuda10.1_py36_626.gddcad2d

Verification: The following command should pass and give one line output in python3.6 conda environment:
conda list cudf | grep cuda10.1_py36_626.gddcad2d

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm poweraieq1.6.2

Related

nessus 9
gentoo 1
ibm 11
openvas 1
redhat 15
gitlab 3
symantec 2
github 2
veracode 2
osv 5
redhatcve 2
debiancve 2
prion 2
cgr 1
cve 2
ubuntucve 2
wolfi 1
rosalinux 1
oracle 1
nessus
nessus
GLSA-202107-32 : Apache Thrift: Multiple vulnerabilities
2022-01-24 00:00:00
EulerOS Virtualization 3.0.6.6 : thrift (EulerOS-SA-2021-1457)
2021-03-10 00:00:00
RHEL 6 / 8 : Red Hat JBoss Enterprise Application Platform 7.3 (RHSA-2020:0962)
2020-03-24 00:00:00
gentoo
gentoo
Apache Thrift: Multiple vulnerabilities
2021-07-14 00:00:00
ibm
ibm
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Apache Thrift
2023-05-02 22:53:35
Security Bulletin: Multiple vulnerabilities CVE-2019-12410, CVE-2019-12408 in arrow package
2019-12-20 08:47:33
Security Bulletin: IBM Resilient SOAR is Using Components with Known Vulnerabilities - Apache Thrift (CVE-2019-0205)
2020-08-31 21:46:03
openvas
openvas
Huawei EulerOS: Security Advisory for thrift (EulerOS-SA-2021-1457)
2021-03-05 00:00:00
redhat
redhat
(RHSA-2020:0962) Important: Red Hat JBoss Enterprise Application Platform 7.3 security update
2020-03-24 11:07:40
(RHSA-2020:0961) Important: Red Hat JBoss Enterprise Application Platform 7.3 security update
2020-03-24 11:06:38
(RHSA-2020:0806) Important: Red Hat JBoss Enterprise Application Platform 7.2.7 on RHEL 8 security update
2020-03-12 16:45:08
gitlab
gitlab
Out-of-bounds Read
2021-05-18 00:00:00
Out-of-bounds Read
2019-10-29 00:00:00
Loop with Unreachable Exit Condition (Infinite Loop)
2019-10-29 00:00:00
symantec
symantec
Apache Thrift CVE-2019-0210 Remote Security Vulnerability
2019-10-17 00:00:00
Apache Thrift CVE-2019-0205 Denial of Service Vulnerability
2019-10-16 00:00:00
github
github
Out-of-bounds read in Apache Thrift
2021-05-18 15:32:04
Loop with Unreachable Exit Condition in Apache Thrift
2022-05-24 17:00:01
veracode
veracode
Denial Of Service (DoS)
2019-10-30 06:08:47
Denial Of Service (DoS)
2020-05-29 06:57:57
osv
osv
Out-of-bounds read in Apache Thrift
2021-05-18 15:32:04
CVE-2019-0210
2019-10-29 19:15:15
Panic due to out-of-bounds read in github.com/apache/thrift
2021-07-28 18:08:05
redhatcve
redhatcve
CVE-2019-0210
2021-08-08 12:08:24
CVE-2019-0205
2020-03-30 08:14:11
debiancve
debiancve
CVE-2019-0210
2019-10-29 19:15:00
CVE-2019-0205
2019-10-29 19:15:00
prion
prion
Input validation
2019-10-29 19:15:00
Design/Logic Flaw
2019-10-29 19:15:00
cgr
cgr
CVE-2019-0205 vulnerabilities
2024-05-05 09:06:28
cve
cve
CVE-2019-0210
2019-10-29 19:15:00
CVE-2019-0205
2019-10-29 19:15:00
ubuntucve
ubuntucve
CVE-2019-0210
2019-10-29 00:00:00
CVE-2019-0205
2019-10-29 00:00:00
wolfi
wolfi
CVE-2019-0205 vulnerabilities
2024-05-05 09:06:29
rosalinux
rosalinux
Advisory ROSA-SA-2023-2270
2023-10-22 06:11:49
oracle
oracle
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON
Related for 82A9F24907A9B5CA433EF30634767972B95813695A7590E7216F059F1BAF1D8D
nessus9gentoo1ibm11openvas1redhat15gitlab3symantec2github2veracode2osv5redhatcve2debiancve2prion2cgr1cve2ubuntucve2wolfi1rosalinux1oracle1