SUSE update for aws-nitro-enclaves-cli
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2022-24713 CVE-2022-31394 |
| CWE-ID | CWE-400 CWE-770 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Public Cloud Module Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 Operating systems & Components / Operating system SUSE Manager Retail Branch Server Operating systems & Components / Operating system SUSE Manager Server Operating systems & Components / Operating system SUSE Manager Proxy Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system aws-nitro-enclaves-cli-debuginfo Operating systems & Components / Operating system package or component aws-nitro-enclaves-binaryblobs-upstream-debuginfo Operating systems & Components / Operating system package or component aws-nitro-enclaves-cli-debugsource Operating systems & Components / Operating system package or component system-group-ne Operating systems & Components / Operating system package or component aws-nitro-enclaves-cli Operating systems & Components / Operating system package or component aws-nitro-enclaves-binaryblobs-upstream Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Resource exhaustion
EUVDB-ID: #VU61895
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-24713
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (ReDoS) attack.
The vulnerability exists due regex for Rust does not properly control consumption of internal resources when parsing untrusted input. A remote attacker can pass specially crafted data to the application and perform a regular expression denial of service (ReDoS) attack.
MitigationUpdate the affected package aws-nitro-enclaves-cli to the latest version.
Vulnerable software versionsPublic Cloud Module: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
aws-nitro-enclaves-cli-debuginfo: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-binaryblobs-upstream-debuginfo: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-cli-debugsource: before 1.2.2~git0.4ccc639-150400.3.3.1
system-group-ne: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-cli: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-binaryblobs-upstream: before 1.2.2~git0.4ccc639-150400.3.3.1
CPE2.3- cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-cli-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-binaryblobs-upstream-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-cli-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:system-group-ne:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-cli:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-binaryblobs-upstream:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231844-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Allocation of Resources Without Limits or Throttling
EUVDB-ID: #VU75144
Risk: Medium
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2022-31394
CWE-ID:
CWE-770 - Allocation of Resources Without Limits or Throttling
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform DoS attack.
The vulnerability exists due to the library does not allow customization of the max_header_list_size method in the H2 third-party software. A remote attacker can send overly large requests to the application and perform a denial of service (DoS) attack.
Update the affected package aws-nitro-enclaves-cli to the latest version.
Vulnerable software versionsPublic Cloud Module: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
aws-nitro-enclaves-cli-debuginfo: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-binaryblobs-upstream-debuginfo: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-cli-debugsource: before 1.2.2~git0.4ccc639-150400.3.3.1
system-group-ne: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-cli: before 1.2.2~git0.4ccc639-150400.3.3.1
aws-nitro-enclaves-binaryblobs-upstream: before 1.2.2~git0.4ccc639-150400.3.3.1
CPE2.3- cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-cli-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-binaryblobs-upstream-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-cli-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:system-group-ne:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-cli:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:aws-nitro-enclaves-binaryblobs-upstream:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231844-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
