Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 1578578 - (CVE-2018-1257) CVE-2018-1257 spring-framework: ReDoS Attack with spring-messaging
CVE-2018-1257 spring-framework: ReDoS Attack with spring-messaging
Status: NEW
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
impact=low,public=20180509,reported=2...
: Reopened, Security
Depends On: 1578579 1578580 1578938
Blocks: 1578941
  Show dependency treegraph
 
Reported: 2018-05-15 18:13 EDT by Laura Pardo
Modified: 2018-10-19 17:49 EDT (History)
79 users (show)

See Also:
Fixed In Version: spring-framework 5.0.6, spring-framework 4.3.17
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2018-05-25 00:07:39 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2018:1809 None None None 2018-06-07 04:26 EDT

  None (edit)
Description Laura Pardo 2018-05-15 18:13:03 EDT 
A flaw was found in Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message to the broker that can lead to a regular expression, denial of service attack.


References:
https://pivotal.io/security/cve-2018-1257
Comment 1 Laura Pardo 2018-05-15 18:14:34 EDT 
Created springframework tracking bugs for this issue:

Affects: fedora-all [bug 1578579]
Comment 5 Jason Shepherd 2018-05-21 03:21:15 EDT 
RHMAP doesn't make sure of websocket stomp as described in https://docs.spring.io/spring/docs/current/spring-framework-reference/web.html#websocket-stomp-enable

Marking RHMAP as not affected.
Comment 6 James Hebden 2018-05-25 00:07:39 EDT 
ODL does not use WebSocket STOMP in any packaged components for any RHOSP release. Marked not affected.
Comment 9 claprun@redhat.com 2018-06-01 04:43:35 EDT 
Shouldn't this be marked as high as that's how it's marked by Pivotal on its CVE?
Comment 10 errata-xmlrpc 2018-06-07 04:26:05 EDT 
This issue has been addressed in the following products:

  Red Hat Openshift Application Runtimes (text-only advisories)

Via RHSA-2018:1809 https://access.redhat.com/errata/RHSA-2018:1809
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.