Bug 2307370 (CVE-2024-8088)

Summary: CVE-2024-8088 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service
Product: [Other] Security Response Reporter: OSIDB Bzimport <bzimport>
Component: vulnerabilityAssignee: Product Security DevOps Team <prodsec-dev>
Status: NEW --- QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: bdettelb, dfreiber, doconnor, drow, jburrell, mijjapur, prodsec-dev, teagle, vkumar
Target Milestone: ---Keywords: Security
Target Release: ---Flags: mijjapur: needinfo? (prodsec-dev)
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in Python's zipfile module. When iterating over the entries of a zip archive, the process can enter into an infinite loop state and become unresponsive. This flaw allows an attacker to craft a malicious ZIP archive, leading to a denial of service from the application consuming the zipfile module. Only applications that handle user-controlled zip archives are affected by this vulnerability.
 Story Points: ---
Clone Of: Environment:
Last Closed: Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 2307457, 2307458, 2307459, 2307460, 2307461, 2307462, 2307463, 2307464, 2307465, 2307466    
Bug Blocks:    

Description OSIDB Bzimport 2024-08-22 19:20:34 UTC 
There is a HIGH severity vulnerability affecting the CPython "zipfile"
module.





When iterating over names of entries in a zip archive (for example, methods
of "zipfile.ZipFile" like "namelist()", "iterdir()", "extractall()", etc)
the process can be put into an infinite loop with a maliciously crafted
zip archive. This defect applies when reading only metadata or extracting
the contents of the zip archive. Programs that are not handling
user-controlled zip archives are not affected.
Comment 1 errata-xmlrpc 2024-08-28 18:51:55 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:5962 https://access.redhat.com/errata/RHSA-2024:5962
Comment 2 Fedora Update System 2024-09-12 01:27:58 UTC 
FEDORA-2024-e887a10dee (python3.13-3.13.0~rc2-1.fc40) has been pushed to the Fedora 40 stable repository.
If problem still persists, please make note of it in this bug report.
Comment 3 Fedora Update System 2024-09-17 02:07:35 UTC 
FEDORA-2024-f2fc325c40 (python3.13-3.13.0~rc2-1.fc39) has been pushed to the Fedora 39 stable repository.
If problem still persists, please make note of it in this bug report.
Comment 4 errata-xmlrpc 2024-09-24 00:48:32 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:6961 https://access.redhat.com/errata/RHSA-2024:6961
Comment 5 errata-xmlrpc 2024-09-24 00:48:45 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2024:6962 https://access.redhat.com/errata/RHSA-2024:6962
Comment 7 errata-xmlrpc 2024-11-12 09:04:08 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:9190 https://access.redhat.com/errata/RHSA-2024:9190
Comment 8 errata-xmlrpc 2024-11-12 09:04:37 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:9192 https://access.redhat.com/errata/RHSA-2024:9192
Comment 9 errata-xmlrpc 2024-11-12 10:02:27 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2024:9371 https://access.redhat.com/errata/RHSA-2024:9371