CVE-2024-3049

A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow an invalid HMAC to be accepted by the Booth server.

CVSS v3 5.9 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/errata/RHSA-2024:3657	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3658	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3659	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3660	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3661	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:4400
https://access.redhat.com/errata/RHSA-2024:4411
https://access.redhat.com/security/cve/CVE-2024-3049	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2272082	Issue Tracking
https://access.redhat.com/errata/RHSA-2024:3657	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3658	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3659	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3660	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:3661	Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:4400
https://access.redhat.com/errata/RHSA-2024:4411
https://access.redhat.com/security/cve/CVE-2024-3049	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2272082	Issue Tracking
https://lists.debian.org/debian-lts-announce/2024/09/msg00037.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERCFM3HXFJKLEMMWU3CZLPKH5LZAEDAN/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPK5BHYOB7CFFRQAN55YV5LH44PWHMQD/

Configurations

Configuration 1 (hide)

cpe:2.3:a:clusterlabs:booth:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:9.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.4:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:8.8:::::::*
	cpe:2.3:o:redhat:enterprise_linux_eus:9.2:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.8_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.2_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.4_aarch64:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.2_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.4_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.8_s390x:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.0_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.8_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.2_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:::::::*
	cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.4:::::::*

History

21 Nov 2024, 09:28

Type	Values Removed	Values Added
References		() https://lists.debian.org/debian-lts-announce/2024/09/msg00037.html - () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERCFM3HXFJKLEMMWU3CZLPKH5LZAEDAN/ - () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPK5BHYOB7CFFRQAN55YV5LH44PWHMQD/ -
References	~~() https://access.redhat.com/errata/RHSA-2024:3657 - Third Party Advisory~~	() https://access.redhat.com/errata/RHSA-2024:3657 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3658 - Third Party Advisory~~	() https://access.redhat.com/errata/RHSA-2024:3658 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3659 - Third Party Advisory~~	() https://access.redhat.com/errata/RHSA-2024:3659 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3660 - Third Party Advisory~~	() https://access.redhat.com/errata/RHSA-2024:3660 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3661 - Third Party Advisory~~	() https://access.redhat.com/errata/RHSA-2024:3661 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:4400 -~~	() https://access.redhat.com/errata/RHSA-2024:4400 -
References	~~() https://access.redhat.com/errata/RHSA-2024:4411 -~~	() https://access.redhat.com/errata/RHSA-2024:4411 -
References	~~() https://access.redhat.com/security/cve/CVE-2024-3049 - Third Party Advisory~~	() https://access.redhat.com/security/cve/CVE-2024-3049 - Third Party Advisory
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=2272082 - Issue Tracking~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2272082 - Issue Tracking

13 Sep 2024, 22:15

Type	Values Removed	Values Added
References	~~{'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERCFM3HXFJKLEMMWU3CZLPKH5LZAEDAN/', 'source': 'secalert@redhat.com'}~~ ~~{'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPK5BHYOB7CFFRQAN55YV5LH44PWHMQD/', 'source': 'secalert@redhat.com'}~~

09 Jul 2024, 12:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2024:4400 - () https://access.redhat.com/errata/RHSA-2024:4411 -

16 Jun 2024, 16:15

Type	Values Removed	Values Added
References		() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERCFM3HXFJKLEMMWU3CZLPKH5LZAEDAN/ -

16 Jun 2024, 03:15

Type	Values Removed	Values Added
References		() https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPK5BHYOB7CFFRQAN55YV5LH44PWHMQD/ -

11 Jun 2024, 17:54

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.4~~	v2 : unknown v3 : 5.9
References	~~() https://access.redhat.com/errata/RHSA-2024:3657 -~~	() https://access.redhat.com/errata/RHSA-2024:3657 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3658 -~~	() https://access.redhat.com/errata/RHSA-2024:3658 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3659 -~~	() https://access.redhat.com/errata/RHSA-2024:3659 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3660 -~~	() https://access.redhat.com/errata/RHSA-2024:3660 - Third Party Advisory
References	~~() https://access.redhat.com/errata/RHSA-2024:3661 -~~	() https://access.redhat.com/errata/RHSA-2024:3661 - Third Party Advisory
References	~~() https://access.redhat.com/security/cve/CVE-2024-3049 -~~	() https://access.redhat.com/security/cve/CVE-2024-3049 - Third Party Advisory
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=2272082 -~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2272082 - Issue Tracking
First Time		Redhat enterprise Linux Server Update Services For Sap Solutions Redhat enterprise Linux Eus Clusterlabs booth Redhat Redhat enterprise Linux For Power Little Endian Eus Redhat enterprise Linux Redhat enterprise Linux For Arm 64 Redhat enterprise Linux For Ibm Z Systems Redhat enterprise Linux For Ibm Z Systems Eus Clusterlabs
CPE		cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.0_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux:8.0:::::::* cpe:2.3:a:clusterlabs:booth:::::::: cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.8_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux:9.0:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.2_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.4_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.8_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.4_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux:7.0:::::::* cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.2_s390x:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.2_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:9.2:::::::* cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4_ppc64le:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:8.8:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.4:::::::* cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.8_aarch64:::::::* cpe:2.3:o:redhat:enterprise_linux_eus:8.4:::::::*

06 Jun 2024, 14:17

Type	Values Removed	Values Added
Summary		(es) Se encontró una falla en Booth, un administrador de tickets de clúster. Si se pasa un hash especialmente manipulado a gcry_md_get_algo_dlen(), es posible que el servidor Booth acepte un HMAC no válido.

06 Jun 2024, 11:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2024:3657 - () https://access.redhat.com/errata/RHSA-2024:3658 - () https://access.redhat.com/errata/RHSA-2024:3659 - () https://access.redhat.com/errata/RHSA-2024:3660 - () https://access.redhat.com/errata/RHSA-2024:3661 -

06 Jun 2024, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-06 06:15

Updated : 2024-11-21 09:28

NVD link : CVE-2024-3049

Mitre link : CVE-2024-3049

CVE.ORG link : CVE-2024-3049

JSON object : View

Products Affected

redhat

enterprise_linux
enterprise_linux_for_ibm_z_systems
enterprise_linux_server_update_services_for_sap_solutions
enterprise_linux_for_arm_64
enterprise_linux_eus
enterprise_linux_for_ibm_z_systems_eus
enterprise_linux_for_power_little_endian_eus

clusterlabs

booth

CWE

CWE-345

Insufficient Verification of Data Authenticity

{"id": "CVE-2024-3049", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "secalert@redhat.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}]}, "published": "2024-06-06T06:15:09.550", "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:3657", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3658", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3659", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3660", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3661", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:4400", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:4411", "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/security/cve/CVE-2024-3049", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272082", "tags": ["Issue Tracking"], "source": "secalert@redhat.com"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3657", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3658", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3659", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3660", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:3661", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:4400", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/errata/RHSA-2024:4411", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://access.redhat.com/security/cve/CVE-2024-3049", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272082", "tags": ["Issue Tracking"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00037.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERCFM3HXFJKLEMMWU3CZLPKH5LZAEDAN/", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPK5BHYOB7CFFRQAN55YV5LH44PWHMQD/", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-345"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow an invalid HMAC to be accepted by the Booth server."}, {"lang": "es", "value": "Se encontr\u00f3 una falla en Booth, un administrador de tickets de cl\u00faster. Si se pasa un hash especialmente manipulado a gcry_md_get_algo_dlen(), es posible que el servidor Booth acepte un HMAC no v\u00e1lido."}], "lastModified": "2024-11-21T09:28:45.870", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:clusterlabs:booth:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "71757B74-23C1-428F-9A3D-7DC5086303A9", "versionEndExcluding": "1.1"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E3F09B5-569F-4C58-9FCA-3C0953D107B5"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:8.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62C31522-0A17-4025-B269-855C7F4B45C2"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_eus:9.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C74F6FA-FA6C-4648-9079-91446E45EE47"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A47EF78-A5B6-4B89-8B74-EEB0647C549F"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.8_aarch64:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7F8A347-0ACE-40E4-BF7B-656D66DDB425"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.2_aarch64:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D85E0DBA-A856-472A-8271-A4F37C35F952"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.4_aarch64:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DBF70805-7EBF-4731-83DB-D71F7A646B0F"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "32AF225E-94C0-4D07-900C-DD868C05F554"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.2_s390x:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E068ABB-31C2-416E-974A-95E07A2BAB0A"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.4_s390x:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "069180B4-BA50-4AD0-8BA9-83F8005E58BE"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.8_s390x:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22C65F53-D624-48A9-A9B7-4C78A31E19F9"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.0_ppc64le:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9AEC5D6F-097A-4DD3-BD12-76B6343E8C83"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.4_ppc64le:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BB28CF82-799F-4A6E-B1DB-0AB423E6C05D"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:8.8_ppc64le:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F91F9255-4EE1-43C7-8831-D2B6C228BFD9"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.2_ppc64le:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99952557-C766-4B9E-8BF5-DBBA194349FF"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian_eus:9.4_ppc64le:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC3CBA5D-9E5D-4C46-B37E-7BB35BE8DADB"}, {"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:8.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC6DD887-9744-43EA-8B3C-44C6B6339590"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}

5.9 /10