jiachao2130/cvrf2cusa
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
0b34274085
cvrf2cusa/cvrf/2023/cvrf-openEuler-SA-2023-1141.xml
Jia Chao 0b34274085 git mv 
Signed-off-by: Jia Chao <jiac13@chinaunicom.cn>
2024-07-25 09:57:37 +08:00

174 lines
13 KiB
XML
Raw Blame History

<?xml version="1.0" encoding="UTF-8"?>
<cvrfdoc xmlns="http://www.icasi.org/CVRF/schema/cvrf/1.1" xmlns:cvrf="http://www.icasi.org/CVRF/schema/cvrf/1.1">
<DocumentTitle xml:lang="en">An update for haproxy is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3,openEuler-22.03-LTS and openEuler-22.03-LTS-SP1</DocumentTitle>
<DocumentType>Security Advisory</DocumentType>
<DocumentPublisher Type="Vendor">
<ContactDetails>openeuler-security@openeuler.org</ContactDetails>
<IssuingAuthority>openEuler security committee</IssuingAuthority>
</DocumentPublisher>
<DocumentTracking>
<Identification>
<ID>openEuler-SA-2023-1141</ID>
</Identification>
<Status>Final</Status>
<Version>1.0</Version>
<RevisionHistory>
<Revision>
<Number>1.0</Number>
<Date>2023-03-04</Date>
<Description>Initial</Description>
</Revision>
</RevisionHistory>
<InitialReleaseDate>2023-03-04</InitialReleaseDate>
<CurrentReleaseDate>2023-03-04</CurrentReleaseDate>
<Generator>
<Engine>openEuler SA Tool V1.0</Engine>
<Date>2023-03-04</Date>
</Generator>
</DocumentTracking>
<DocumentNotes>
<Note Title="Synopsis" Type="General" Ordinal="1" xml:lang="en">haproxy security update</Note>
<Note Title="Summary" Type="General" Ordinal="2" xml:lang="en">An update for haproxy is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3,openEuler-22.03-LTS and openEuler-22.03-LTS-SP1.</Note>
<Note Title="Description" Type="General" Ordinal="3" xml:lang="en">HAProxy is a free, very fast and reliable solution offering high availability, load balancing, and proxying for TCP and HTTP-based applications. It is particularly suited for very high traffic web sites and powers quite a number of the world's most visited ones.
Security Fix(es):
Initial description: Router PODs frequently getting restarted and haproxy process is receiving the segfault but it is not generating coredump even though the core file size is unlimited.
Upstream bug: https://github.com/haproxy/haproxy/issues/1972(CVE-2023-0056)
HAProxy before 2.7.3 may allow a bypass of access control because HTTP/1 headers are inadvertently lost in some situations, aka &quot;request smuggling.&quot; The HTTP header parsers in HAProxy may accept empty header field names, which could be used to truncate the list of HTTP headers and thus make some headers disappear after being parsed and processed for HTTP/1.0 and HTTP/1.1. For HTTP/2 and HTTP/3, the impact is limited because the headers disappear before being parsed and processed, as if they had not been sent by the client. The fixed versions are 2.7.3, 2.6.9, 2.5.12, 2.4.22, 2.2.29, and 2.0.31.(CVE-2023-25725)</Note>
<Note Title="Topic" Type="General" Ordinal="4" xml:lang="en">An update for haproxy is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP3,openEuler-22.03-LTS and openEuler-22.03-LTS-SP1.
openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.</Note>
<Note Title="Severity" Type="General" Ordinal="5" xml:lang="en">High</Note>
<Note Title="Affected Component" Type="General" Ordinal="6" xml:lang="en">haproxy</Note>
</DocumentNotes>
<DocumentReferences>
<Reference Type="Self">
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1141</URL>
</Reference>
<Reference Type="openEuler CVE">
<URL>https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2023-0056</URL>
<URL>https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2023-25725</URL>
</Reference>
<Reference Type="Other">
<URL>https://nvd.nist.gov/vuln/detail/CVE-2023-0056</URL>
<URL>https://nvd.nist.gov/vuln/detail/CVE-2023-25725</URL>
</Reference>
</DocumentReferences>
<ProductTree xmlns="http://www.icasi.org/CVRF/schema/prod/1.1">
<Branch Type="Product Name" Name="openEuler">
<FullProductName ProductID="openEuler-20.03-LTS-SP1" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">openEuler-20.03-LTS-SP1</FullProductName>
<FullProductName ProductID="openEuler-20.03-LTS-SP3" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">openEuler-20.03-LTS-SP3</FullProductName>
<FullProductName ProductID="openEuler-22.03-LTS" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">openEuler-22.03-LTS</FullProductName>
<FullProductName ProductID="openEuler-22.03-LTS-SP1" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">openEuler-22.03-LTS-SP1</FullProductName>
</Branch>
<Branch Type="Package Arch" Name="aarch64">
<FullProductName ProductID="haproxy-debuginfo-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-debuginfo-2.2.16-4.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-2.2.16-4.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-debugsource-2.2.16-4.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-2.2.16-4.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debuginfo-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-debuginfo-2.2.16-4.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-debugsource-2.2.16-4.oe1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debuginfo-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-debuginfo-2.4.8-3.oe2203.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-2.4.8-3.oe2203.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-debugsource-2.4.8-3.oe2203.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-debugsource-2.6.6-2.oe2203sp1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-2.6.6-2.oe2203sp1.aarch64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debuginfo-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-debuginfo-2.6.6-2.oe2203sp1.aarch64.rpm</FullProductName>
</Branch>
<Branch Type="Package Arch" Name="noarch">
<FullProductName ProductID="haproxy-help-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-help-2.2.16-4.oe1.noarch.rpm</FullProductName>
<FullProductName ProductID="haproxy-help-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-help-2.2.16-4.oe1.noarch.rpm</FullProductName>
<FullProductName ProductID="haproxy-help-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-help-2.4.8-3.oe2203.noarch.rpm</FullProductName>
<FullProductName ProductID="haproxy-help-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-help-2.6.6-2.oe2203sp1.noarch.rpm</FullProductName>
</Branch>
<Branch Type="Package Arch" Name="src">
<FullProductName ProductID="haproxy-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-2.2.16-4.oe1.src.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-2.2.16-4.oe1.src.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-2.4.8-3.oe2203.src.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-2.6.6-2.oe2203sp1.src.rpm</FullProductName>
</Branch>
<Branch Type="Package Arch" Name="x86_64">
<FullProductName ProductID="haproxy-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-2.2.16-4.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debuginfo-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-debuginfo-2.2.16-4.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">haproxy-debugsource-2.2.16-4.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-2.2.16-4.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debuginfo-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-debuginfo-2.2.16-4.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.2.16-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">haproxy-debugsource-2.2.16-4.oe1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-2.4.8-3.oe2203.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debuginfo-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-debuginfo-2.4.8-3.oe2203.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.4.8-3" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">haproxy-debugsource-2.4.8-3.oe2203.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debuginfo-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-debuginfo-2.6.6-2.oe2203sp1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-2.6.6-2.oe2203sp1.x86_64.rpm</FullProductName>
<FullProductName ProductID="haproxy-debugsource-2.6.6-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS-SP1">haproxy-debugsource-2.6.6-2.oe2203sp1.x86_64.rpm</FullProductName>
</Branch>
</ProductTree>
<Vulnerability Ordinal="1" xmlns="http://www.icasi.org/CVRF/schema/vuln/1.1">
<Notes>
<Note Title="Vulnerability Description" Type="General" Ordinal="1" xml:lang="en">Initial description: Router PODs frequently getting restarted and haproxy process is receiving the segfault but it is not generating coredump even though the core file size is unlimited.Upstream bug: https://github.com/haproxy/haproxy/issues/1972</Note>
</Notes>
<ReleaseDate>2023-03-04</ReleaseDate>
<CVE>CVE-2023-0056</CVE>
<ProductStatuses>
<Status Type="Fixed">
<ProductID>openEuler-20.03-LTS-SP1</ProductID>
<ProductID>openEuler-20.03-LTS-SP3</ProductID>
<ProductID>openEuler-22.03-LTS</ProductID>
<ProductID>openEuler-22.03-LTS-SP1</ProductID>
</Status>
</ProductStatuses>
<Threats>
<Threat Type="Impact">
<Description>Medium</Description>
</Threat>
</Threats>
<CVSSScoreSets>
<ScoreSet>
<BaseScore>4.3</BaseScore>
<Vector>AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L</Vector>
</ScoreSet>
</CVSSScoreSets>
<Remediations>
<Remediation Type="Vendor Fix">
<Description>haproxy security update</Description>
<DATE>2023-03-04</DATE>
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1141</URL>
</Remediation>
</Remediations>
</Vulnerability>
<Vulnerability Ordinal="2" xmlns="http://www.icasi.org/CVRF/schema/vuln/1.1">
<Notes>
<Note Title="Vulnerability Description" Type="General" Ordinal="2" xml:lang="en">HAProxy before 2.7.3 may allow a bypass of access control because HTTP/1 headers are inadvertently lost in some situations, aka request smuggling. The HTTP header parsers in HAProxy may accept empty header field names, which could be used to truncate the list of HTTP headers and thus make some headers disappear after being parsed and processed for HTTP/1.0 and HTTP/1.1. For HTTP/2 and HTTP/3, the impact is limited because the headers disappear before being parsed and processed, as if they had not been sent by the client. The fixed versions are 2.7.3, 2.6.9, 2.5.12, 2.4.22, 2.2.29, and 2.0.31.</Note>
</Notes>
<ReleaseDate>2023-03-04</ReleaseDate>
<CVE>CVE-2023-25725</CVE>
<ProductStatuses>
<Status Type="Fixed">
<ProductID>openEuler-20.03-LTS-SP1</ProductID>
<ProductID>openEuler-20.03-LTS-SP3</ProductID>
<ProductID>openEuler-22.03-LTS</ProductID>
<ProductID>openEuler-22.03-LTS-SP1</ProductID>
</Status>
</ProductStatuses>
<Threats>
<Threat Type="Impact">
<Description>High</Description>
</Threat>
</Threats>
<CVSSScoreSets>
<ScoreSet>
<BaseScore>7.5</BaseScore>
<Vector>AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N</Vector>
</ScoreSet>
</CVSSScoreSets>
<Remediations>
<Remediation Type="Vendor Fix">
<Description>haproxy security update</Description>
<DATE>2023-03-04</DATE>
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1141</URL>
</Remediation>
</Remediations>
</Vulnerability>
</cvrfdoc>
Reference in New Issue View Git Blame Copy Permalink