Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMC38D6ABC79203A68FBEFD4AF0550B930A12344E61F2BA7EBD4A32B10F48FF4F4
HistoryMay 25, 2022 - 2:55 p.m.

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from gzip, jackson-databind, libssh, gnutls, nettle and zlib

2022-05-2514:55:17
www.ibm.com
34

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.3%

JSON

Summary

Multiple issues were identified in Red Hat UBI(ubi8/ubi-minimal) v8.5-x packages gzip, libssh, gnutls, nettle, zlib and jackson-databind that were shipped with IBM MQ Operator and IBM supplied MQ Advanced container images.

Vulnerability Details

CVEID:CVE-2021-3634
**DESCRIPTION:**libssh is vulnerable to a heap-based buffer overflow, caused by improper bounds checking. By sending a specially-crafted request, a remote authenticated attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.
CVSS Base score: 5.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/208281 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L)

CVEID:CVE-2022-1271
**DESCRIPTION:**GNU gzip could allow a remote authenticated attacker to bypass security restrictions, caused by improper validation of file name by the zgrep utility. By using a specially-crafted file name, an attacker could exploit this vulnerability to write arbitrary files on the system.
CVSS Base score: 7.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/223754 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H)

CVEID:CVE-2021-3580
**DESCRIPTION:**GNU Nettle is vulnerable to a denial of service, caused by a flaw in the RSA decryption functions. By sending specially-crafted ciphertext, a remote attacker could exploit this vulnerability to cause the application to crash.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/204056 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2020-36518
**DESCRIPTION:**FasterXML jackson-databind is vulnerable to a denial of service, caused by a Java StackOverflow exception. By using a large depth of nested objects, a remote attacker could exploit this vulnerability to cause a denial of service.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/222319 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2018-25032
**DESCRIPTION:**Zlib is vulnerable to a denial of service, caused by a memory corruption in the deflate operation. By using many distant matches, a remote attacker could exploit this vulnerability to cause the application to crash.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/222615 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM MQ Operator CD release 1.8.1
IBM MQ Operator EUS release 1.3.3
IBM Supplied MQ Advanced Queue Manager Container images 9.2.5.0-r2, 9.2.0.5-r1

Remediation/Fixes

Issues listed by this security bulletin are addressed in IBM MQ Operator 1.8.2 CD release that included IBM supplied MQ Advanced 9.2.5.0-r3 container images and IBM MQ Operator 1.3.4 EUS release that included IBM supplied MQ Advanced 9.2.0.5-r2 container images.

IBM MQ Operator 1.8.2 CD release details:

Image Fix Version Registry Image Location
ibm-mq-operator 1.8.2 icr.io icr.io/cpopen/ibm-mq-operator@sha256:3cb8a3021a434a656eeff95e285d525158a8372c14ec04c1a234d9b639640e23
ibm-mqadvanced-server 9.2.5.0-r3 cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server@sha256:2442d0bcb0b0b78ac61e66fbdb5bb5d0fc117d9912a8c95046d6a544036620e2
ibm-mqadvanced-server-integration 9.2.5.0-r3 cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server-integration@sha256:69c2e6440964e847cce19dbd68aabb5fa51b338a49836b1e202aa57c184c2614
ibm-mqadvanced-server-dev 9.2.5.0-r3 icr.io icr.io/ibm-messaging/mq@sha256:febe3fbf180fd844e9d94fb48b954b84a0f20a0c1dd6052f3ce4e1545d379c9a

IBM MQ Operator 1.3.4 EUS release details:

Image Fix Version Registry Image Location
ibm-mq-operator 1.3.4 icr.io icr.io/cpopen/ibm-mq-operator@sha256:c98d3ee1f619cd9b33793a5180961654636eb48393be9e42335363fb3b683877
ibm-mqadvanced-server-integration 9.2.0.5-r2-eus cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server-integration@sha256:c17795de836bb9b553682b4b22f9b78f98232291c99383f570a83d7fdd25afec

Workarounds and Mitigations

None

Related

nessus 76
redhat 14
virtuozzo 2
veracode 3
ibm 17
atlassian 5
cve 4
ubuntucve 2
debian 4
oraclelinux 4
almalinux 2
github 2
osv 15
debiancve 4
prion 4
freebsd 2
redhatcve 3
suse 2
alpinelinux 2
photon 3
archlinux 1
cbl_mariner 5
altlinux 1
ubuntu 3
mageia 1
fedora 5
cnvd 1
qt 1
cloudlinux 1
cloudfoundry 2
rocky 3
amazon 2
aix 1
wolfi 1
mariadbunix 1
nessus
nessus
Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-20201105.2298)
2022-09-27 00:00:00
Oracle Primavera P6 Enterprise Project Portfolio Management (Jul 2022 CPU)
2022-10-05 00:00:00
RHEL 7 : RHV-H security update (redhat-virtualization-host) 4.3.23 (Important) (RHSA-2022:5439)
2022-07-01 00:00:00
redhat
redhat
(RHSA-2022:5525) Moderate: Service Binding Operator security update
2022-07-07 10:12:50
(RHSA-2022:2268) Moderate: OpenShift Container Platform 4.7.51 security update
2022-05-25 11:53:12
(RHSA-2022:2265) Moderate: OpenShift Container Platform 4.6.58 security and extras update
2022-05-26 12:49:14
virtuozzo
virtuozzo
Virtuozzo Hybrid Infrastructure 4.7 Update 1.4 (4.7.1-53)
2022-05-25 00:00:00
Virtuozzo Hybrid Infrastructure 5.0 Update 1.3 (5.0.1-57)
2022-05-25 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-03-14 09:02:56
Denial Of Service (DoS)
2021-09-18 03:57:04
Denial Of Service
2021-08-27 21:15:50
ibm
ibm
Security Bulletin: Vulnerability in FasterXML jackson-databind affects IBM Process Mining . CVE-2020-36518
2023-02-01 21:30:12
Security Bulletin: IBM Sterling B2B Integrator is vulnerable to denial service (CVE-2020-36518)
2023-01-03 16:11:40
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in FasterXML jackson-databind
2023-01-30 16:40:38
atlassian
atlassian
Bump jackson-databind dependency to 2.13.4.2
2023-01-12 09:57:47
jackson-databind Vulnerability in Bitbucket Data Center and Server
2023-10-06 17:44:36
DoS (Denial of Service) com.fasterxml.jackson.core in Jira Software Data Center and Server
2023-11-12 13:45:16
cve
cve
CVE-2020-36518
2022-03-11 07:15:00
CVE-2021-3634
2021-08-31 17:15:00
CVE-2021-3580
2021-08-05 21:15:00
ubuntucve
ubuntucve
CVE-2020-36518
2022-03-11 00:00:00
CVE-2021-3634
2021-08-26 00:00:00
debian
debian
[SECURITY] [DLA 2990-1] jackson-databind security update
2022-05-02 18:33:27
[SECURITY] [DSA 4965-1] libssh security update
2021-08-31 14:43:51
[SECURITY] [DSA 5111-1] zlib security update
2022-04-01 15:20:47
oraclelinux
oraclelinux
jackson security update
2023-05-15 00:00:00
libssh security, bug fix, and enhancement update
2022-05-17 00:00:00
zlib security update
2022-04-28 00:00:00
almalinux
almalinux
Moderate: jackson security update
2023-05-09 00:00:00
Low: libssh security, bug fix, and enhancement update
2022-05-10 08:14:06
github
github
Apiman Manager API affected by Jackson denial of service vulnerability
2023-01-09 20:05:31
Deeply nested json in jackson-databind
2022-03-12 00:00:36
osv
osv
Apiman Manager API affected by Jackson denial of service vulnerability
2023-01-09 20:05:31
Deeply nested json in jackson-databind
2022-03-12 00:00:36
CVE-2020-36518
2022-03-11 07:15:07
debiancve
debiancve
CVE-2020-36518
2022-03-11 07:15:00
CVE-2021-3634
2021-08-31 17:15:00
CVE-2021-3580
2021-08-05 21:15:00
prion
prion
Design/Logic Flaw
2022-03-11 07:15:00
Denial of service
2021-08-05 21:15:00
Design/Logic Flaw
2021-08-31 17:15:00
freebsd
freebsd
kafka -- Denial Of Service vulnerability
2022-03-11 00:00:00
libssh -- possible heap-buffer overflow vulnerability
2021-08-26 00:00:00
redhatcve
redhatcve
CVE-2020-36518
2022-03-16 11:47:03
CVE-2021-3580
2021-06-08 11:48:53
CVE-2021-3634
2021-08-26 13:32:43
suse
suse
Security update for libnettle (important)
2021-07-11 00:00:00
Security update for libnettle (important)
2021-06-24 00:00:00
alpinelinux
alpinelinux
CVE-2021-3580
2021-08-05 21:15:00
CVE-2021-3634
2021-08-31 17:15:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0286
2021-08-19 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0380
2021-08-19 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0426
2021-08-19 00:00:00
archlinux
archlinux
[ASA-202106-28] nettle: denial of service
2021-06-09 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-3580 affecting package nettle 3.7.2-1
2022-04-09 06:51:55
CVE-2021-3634 affecting package libssh 0.9.5-2
2024-04-19 21:06:52
CVE-2021-3580 affecting package nettle 3.7.2-1
2021-09-09 15:02:55
altlinux
altlinux
Security fix for the ALT Linux 9 package libssh version 0.9.6-alt1
2021-09-17 00:00:00
ubuntu
ubuntu
libssh vulnerability
2021-08-26 00:00:00
zlib vulnerability
2022-03-30 00:00:00
rsync vulnerability
2022-06-13 00:00:00
mageia
mageia
Updated libssh packages fix security vulnerability
2021-09-23 07:49:29
fedora
fedora
[SECURITY] Fedora 35 Update: libssh-0.9.6-1.fc35
2021-09-29 00:20:41
[SECURITY] Fedora 34 Update: libssh-0.9.6-1.fc34
2021-09-29 01:10:26
[SECURITY] Fedora 34 Update: rsync-3.2.3-6.fc34
2022-04-29 06:56:42
cnvd
cnvd
libssh buffer overflow vulnerability (CNVD-2021-71262)
2021-09-02 00:00:00
qt
qt
Security advisory: Recently reported zlib compression issue impacts Qt
2022-04-05 00:00:00
cloudlinux
cloudlinux
Fixed CVE-2018-25032 in rsync
2022-05-19 23:55:35
cloudfoundry
cloudfoundry
USN-5359-1: rsync vulnerability | Cloud Foundry
2022-05-23 00:00:00
USN-5355-1: zlib vulnerability | Cloud Foundry
2022-05-23 00:00:00
rocky
rocky
rsync security update
2022-05-11 13:23:26
zlib security update
2022-04-28 14:07:14
libssh security, bug fix, and enhancement update
2022-05-10 08:14:06
amazon
amazon
Important: zlib
2022-04-04 23:23:00
Important: rsync
2022-12-01 17:33:00
aix
aix
AIX is vulnerable to denial of service due to zlib and zlibNX
2022-09-28 13:38:50
wolfi
wolfi
CVE-2018-25032 vulnerabilities
2024-04-19 21:05:52
mariadbunix
mariadbunix
CVE-2018-25032
2022-03-25 09:15:08

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

79.3%

JSON
Related for C38D6ABC79203A68FBEFD4AF0550B930A12344E61F2BA7EBD4A32B10F48FF4F4
nessus76redhat14virtuozzo2veracode3ibm17atlassian5cve4ubuntucve2debian4oraclelinux4almalinux2github2osv15debiancve4prion4freebsd2redhatcve3suse2alpinelinux2photon3archlinux1cbl_mariner5altlinux1ubuntu3mageia1fedora5cnvd1qt1cloudlinux1cloudfoundry2rocky3amazon2aix1wolfi1mariadbunix1