Bug 1222238 (CVE-2024-23449)

Summary: VUL-0: CVE-2024-23449: elasticsearch: uncaught exception leads to crash
Product: [Novell Products] SUSE Security Incidents Reporter: SMASH SMASH <smash_bz>
Component: IncidentsAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P5 - None CC: gianluca.gabrielli
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/399616/
Whiteboard: CVSSv3.1:SUSE:CVE-2024-23449:4.3:(AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L)
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description SMASH SMASH 2024-04-02 13:20:01 UTC 
An uncaught exception in Elasticsearch >= 8.4.0 and < 8.11.1 occurs when an encrypted PDF is passed to an attachment processor through the REST API. The Elasticsearch ingest node that attempts to parse the PDF file will crash. This does not happen with password-protected PDF files or with unencrypted PDF files.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-23449
https://bugzilla.redhat.com/show_bug.cgi?id=2272190
https://www.cve.org/CVERecord?id=CVE-2024-23449
https://discuss.elastic.co/t/elasticsearch-8-11-1-security-update-esa-2024-05/356458
Comment 2 Gianluca Gabrielli 2024-04-02 13:21:29 UTC 
close as no products affected.