2321829 – (CVE-2024-49767) CVE-2024-49767 werkzeug: python-werkzeug: Werkzeug possible resource exhaustion when parsing file data in forms

Bug 2321829 (CVE-2024-49767) - CVE-2024-49767 werkzeug: python-werkzeug: Werkzeug possible resource exhaustion when parsing file data in forms

Summary: CVE-2024-49767 werkzeug: python-werkzeug: Werkzeug possible resource exhausti...

Keywords:
Status:	NEW
Alias:	CVE-2024-49767
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2024-10-25 20:01 UTC by OSIDB Bzimport
Modified:	2024-10-28 16:23 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2024-10-25 20:01:03 UTC

Werkzeug is a Web Server Gateway Interface web application library. Applications using `werkzeug.formparser.MultiPartParser` corresponding to a version of Werkzeug prior to 3.0.6 to parse `multipart/form-data` requests (e.g. all flask applications) are vulnerable to a relatively simple but effective resource exhaustion (denial of service) attack. A specifically crafted form submission request can cause the parser to allocate and block 3 to 8 times the upload size in main memory. There is no upper limit; a single upload at 1 Gbit/s can exhaust 32 GB of RAM in less than 60 seconds. Werkzeug version 3.0.6 fixes this issue.

Note You need to log in before you can comment on or make changes to this bug.