Lucene search

GoogleOSV:RUSTSEC-2024-0336

HistoryApr 19, 2024 - 12:00 p.m.

`rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input

2024-04-1912:00:00

Google

osv.dev

rustls

connectioncommon

complete_io

infinite loop

network input

close_notify alert

handshake

rustls-tokio

rustls-ffi

stream

streamowned

affected

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

15.7%

JSON

If a close_notify alert is received during a handshake, complete_io
does not terminate.

Callers which do not call complete_io are not affected.

rustls-tokio and rustls-ffi do not call complete_io
and are not affected.

rustls::Stream and rustls::StreamOwned types use
complete_io and are affected.

CPENameOperatorVersion
rustlslt0.21.11
rustlslt0.22.4
rustlsge0.23.0
rustlsge0.22.0
rustlslt0.23.5

Name	Operator	Version
rustls	lt	0.21.11
rustls	lt	0.22.4
rustls	ge	0.23.0
rustls	ge	0.22.0
rustls	lt	0.23.5

References

crates.io/crates/rustls

github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj

rustsec.org/advisories/RUSTSEC-2024-0336.html

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

15.7%

JSON

Related for OSV:RUSTSEC-2024-0336