CVE-2024-32650 - Vulnerability Details - OpenCVE

Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server's `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Rustls Project	Rustls

No data.

No data.

References

Link	Providers
https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d
https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e
https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e
https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-04-19T16:05:44.050Z

Updated: 2024-08-02T02:13:40.195Z

Reserved: 2024-04-16T14:15:26.876Z

Link: CVE-2024-32650

Vulnrichment

Updated: 2024-04-22T14:56:20.057Z

NVD

Status : Awaiting Analysis

Published: 2024-04-19T16:15:10.940

Modified: 2024-11-21T09:15:23.803

Link: CVE-2024-32650

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-32650", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-04-16T14:15:26.876Z", "datePublished": "2024-04-19T16:05:44.050Z", "dateUpdated": "2024-08-02T02:13:40.195Z"}, "containers": {"cna": {"title": "Rustls vulnerable to an infinite loop in rustls::conn::ConnectionCommon::complete_io() with proper client input", "problemTypes": [{"descriptions": [{"cweId": "CWE-835", "lang": "en", "description": "CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj"}, {"name": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d", "tags": ["x_refsource_MISC"], "url": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d"}, {"name": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e", "tags": ["x_refsource_MISC"], "url": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e"}, {"name": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e", "tags": ["x_refsource_MISC"], "url": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e"}], "affected": [{"vendor": "rustls", "product": "rustls", "versions": [{"version": ">= 0.23.0, < 0.23.5", "status": "affected"}, {"version": ">= 0.22.0, < 0.22.4", "status": "affected"}, {"version": ">= 0.21.0, < 0.21.11", "status": "affected"}, {"version": "= 0.20.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-19T19:47:45.579Z"}, "descriptions": [{"lang": "en", "value": "Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server's `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11."}], "source": {"advisory": "GHSA-6g7w-8wpp-frhj", "discovery": "UNKNOWN"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-32650", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-22T15:34:25.994212Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:rustls_project:rustls:*:*:*:*:*:*:*:*"], "vendor": "rustls_project", "product": "rustls", "versions": [{"status": "unknown", "version": "0.21.11"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:49:50.274Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T02:13:40.195Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj"}, {"name": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d"}, {"name": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e"}, {"name": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e"}]}]}}

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-32650", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-04-16T14:15:26.876Z", "datePublished": "2024-04-19T16:05:44.050Z", "dateUpdated": "2024-06-04T17:49:50.274Z"}, "containers": {"cna": {"title": "Rustls vulnerable to an infinite loop in rustls::conn::ConnectionCommon::complete_io() with proper client input", "problemTypes": [{"descriptions": [{"cweId": "CWE-835", "lang": "en", "description": "CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj"}, {"name": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d", "tags": ["x_refsource_MISC"], "url": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d"}, {"name": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e", "tags": ["x_refsource_MISC"], "url": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e"}, {"name": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e", "tags": ["x_refsource_MISC"], "url": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e"}], "affected": [{"vendor": "rustls", "product": "rustls", "versions": [{"version": ">= 0.23.0, < 0.23.5", "status": "affected"}, {"version": ">= 0.22.0, < 0.22.4", "status": "affected"}, {"version": ">= 0.21.0, < 0.21.11", "status": "affected"}, {"version": "= 0.20.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-04-19T19:47:45.579Z"}, "descriptions": [{"lang": "en", "value": "Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server's `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11."}], "source": {"advisory": "GHSA-6g7w-8wpp-frhj", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-32650", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-22T15:34:25.994212Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:rustls_project:rustls:*:*:*:*:*:*:*:*"], "vendor": "rustls_project", "product": "rustls", "versions": [{"status": "unknown", "version": "0.21.11"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-04-22T14:56:20.057Z"}, "title": "CISA ADP Vulnrichment"}]}}

{"descriptions": [{"lang": "en", "value": "Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server's `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11."}, {"lang": "es", "value": "Rustls es una librer\u00eda TLS moderna escrita en Rust. `rustls::ConnectionCommon::complete_io` podr\u00eda caer en un bucle infinito basado en la entrada de la red. Cuando se utiliza un servidor Rustls de bloqueo, si un cliente env\u00eda un mensaje `close_notify` inmediatamente despu\u00e9s de `client_hello`, el `complete_io` del servidor entrar\u00e1 en un bucle infinito. Esta vulnerabilidad se solucion\u00f3 en 0.23.5, 0.22.4 y 0.21.11."}], "id": "CVE-2024-32650", "lastModified": "2024-11-21T09:15:23.803", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-04-19T16:15:10.940", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d"}, {"source": "security-advisories@github.com", "url": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e"}, {"source": "security-advisories@github.com", "url": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e"}, {"source": "security-advisories@github.com", "url": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-835"}], "source": "security-advisories@github.com", "type": "Secondary"}]}