Bug 2264074 (CVE-2024-25978) - CVE-2024-25978 MSA-24-0001: Denial of service risk in file picker unzip functionality
Summary: CVE-2024-25978 MSA-24-0001: Denial of service risk in file picker unzip funct...
Keywords:
Status: CLOSED UPSTREAM
Alias: CVE-2024-25978
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 2264902 2264901
Blocks: 2264073
TreeView+ depends on / blocked
 
Reported: 2024-02-13 18:17 UTC by Zack Miele
Modified: 2024-03-22 15:30 UTC (History)
1 user (show)

Fixed In Version: moodle 4.3.3, 4.2.6 and 4.1.9
Doc Type: ---
Doc Text:
Insufficient file size checks resulted in a denial of service risk in the file picker's unzip functionality.
Clone Of:
Environment:
Last Closed: 2024-03-22 15:30:20 UTC
Embargoed:

Attachments (Terms of Use)

Description Zack Miele 2024-02-13 18:17:10 UTC 
MSA-24-0001: Denial of service risk in file picker unzip functionality

Description: Insufficient file size checks resulted in a denial of
service risk in the file picker's unzip functionality.
Issue summary: Denial of service risk in file picker unzip functionality
Severity/Risk: Serious
Versions affected: 4.3 to 4.3.2, 4.2 to 4.2.5, 4.1 to 4.1.8 and earlier
unsupported versions
Versions fixed: 4.3.3, 4.2.6 and 4.1.9
Reported by: Sam Ezeh
Issue no.: MDL-74641
CVE identifier: Pending
Changes (master):
http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-74641
Comment 1 Robb Gatica 2024-02-19 15:59:36 UTC 
Created moodle tracking bugs for this issue:

Affects: epel-all [bug 2264902]
Affects: fedora-all [bug 2264901]
Comment 2 Zack Miele 2024-03-22 15:30:18 UTC 
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
Note You need to log in before you can comment on or make changes to this bug.