Bug 1223211 (CVE-2024-32650) - VUL-0: CVE-2024-32650: TRACKERBUG: rust-rustls: Infinite loop in rustls::conn::ConnectionCommon:complete_io() with proper client input
Summary: VUL-0: CVE-2024-32650: TRACKERBUG: rust-rustls: Infinite loop in rustls::conn...
Status: NEW
Alias: CVE-2024-32650
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/402742/
Whiteboard: CVSSv3.1:SUSE:CVE-2024-32650:7.5:(AV:...
Keywords:
Depends on: 1223212 1223213 1223216 1223219 1223221 1223222 1223223 1223225 1223226 1223227 1223228 1223229 1223230 1223232 1223233 1223234 1223236 1223238 1223240 1223242 1223243 1223245 1223247 1223248 1223249 1223250 1223214 1223217 1223218 1223220 1223224 1223231 1223237 1223239 1223241 1223244 1223246
Blocks:
  Show dependency treegraph
 
Reported: 2024-04-22 11:18 UTC by SMASH SMASH
Modified: 2024-04-22 12:15 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description SMASH SMASH 2024-04-22 11:18:28 UTC 
Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. When using a blocking rustls server, if a client send a `close_notify` message immediately after `client_hello`, the server's `complete_io` will get in an infinite loop. This vulnerability is fixed in 0.23.5, 0.22.4, and 0.21.11.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-32650
https://bugzilla.redhat.com/show_bug.cgi?id=2276085
https://www.cve.org/CVERecord?id=CVE-2024-32650
https://github.com/rustls/rustls/commit/2123576840aa31043a31b0770e6572136fbe0c2d
https://github.com/rustls/rustls/commit/6e938bcfe82a9da7a2e1cbf10b928c7eca26426e
https://github.com/rustls/rustls/commit/f45664fbded03d833dffd806503d3c8becd1b71e
https://github.com/rustls/rustls/security/advisories/GHSA-6g7w-8wpp-frhj