CVE-2024-9355 - OpenCVE

A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when comparing a trusted computed hmac sum to an untrusted input sum if an attacker can send a zeroed buffer in place of a pre-computed sum. It is also possible to force a derived key to be all zeros instead of an unpredictable value. This may have follow-on implications for the Go TLS stack.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Vendors	Products
Redhat	Amq Streams Ansible Automation Platform Container Native Virtualization Enterprise Linux Network Bound Disk Encryption Tang Ocp Tools Openshift Openshift Container Storage Openshift Data Foundation Openshift Devspaces Openshift Gitops Openshift Pipelines Openshift Service On Aws Openstack Satellite Serverless Service Interconnect Storage Trusted Artifact Signer

No data.

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 8
go-toolset:rhel8-8100020241001112709.a3795dee	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:7502	2024-10-02T00:00:00Z
grafana-0:9.2.10-20.el8_10	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:8327	2024-10-22T00:00:00Z
Red Hat Enterprise Linux 9
golang-0:1.21.13-4.el9_4	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:7550	2024-10-02T00:00:00Z
grafana-0:9.2.10-19.el9_4	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:8678	2024-10-30T00:00:00Z

References

Link	Providers
https://access.redhat.com/errata/RHSA-2024:7502
https://access.redhat.com/errata/RHSA-2024:7550
https://access.redhat.com/errata/RHSA-2024:8327
https://access.redhat.com/errata/RHSA-2024:8678
https://access.redhat.com/security/cve/CVE-2024-9355
https://bugzilla.redhat.com/show_bug.cgi?id=2315719
https://nvd.nist.gov/vuln/detail/CVE-2024-9355
https://www.cve.org/CVERecord?id=CVE-2024-9355

History

Wed, 30 Oct 2024 23:00:00 +0000

Type	Values Removed	Values Added
References		https://access.redhat.com/errata/RHSA-2024:8678

Tue, 22 Oct 2024 17:15:00 +0000

Type	Values Removed	Values Added
References		https://access.redhat.com/errata/RHSA-2024:8327

Thu, 03 Oct 2024 18:45:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:enterprise_linux:9

Thu, 03 Oct 2024 02:15:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:enterprise_linux:8

Thu, 03 Oct 2024 00:45:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:enterprise_linux:9::appstream
References		https://access.redhat.com/errata/RHSA-2024:7550

Wed, 02 Oct 2024 17:30:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:enterprise_linux:8::appstream
References		https://access.redhat.com/errata/RHSA-2024:7502

Tue, 01 Oct 2024 19:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 01 Oct 2024 18:30:00 +0000

Type	Values Removed	Values Added
Description	No description is available for this CVE.	A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when comparing a trusted computed hmac sum to an untrusted input sum if an attacker can send a zeroed buffer in place of a pre-computed sum. It is also possible to force a derived key to be all zeros instead of an unpredictable value. This may have follow-on implications for the Go TLS stack.
Title	golang-fips: Golang FIPS zeroed buffer	Golang-fips: golang fips zeroed buffer
First Time appeared		Redhat Redhat amq Streams Redhat ansible Automation Platform Redhat container Native Virtualization Redhat enterprise Linux Redhat network Bound Disk Encryption Tang Redhat ocp Tools Redhat openshift Redhat openshift Container Storage Redhat openshift Data Foundation Redhat openshift Devspaces Redhat openshift Gitops Redhat openshift Pipelines Redhat openshift Service On Aws Redhat openstack Redhat satellite Redhat serverless Redhat service Interconnect Redhat storage Redhat trusted Artifact Signer
CPEs		cpe:/a:redhat:amq_streams:1 cpe:/a:redhat:ansible_automation_platform cpe:/a:redhat:ansible_automation_platform:2 cpe:/a:redhat:container_native_virtualization:4 cpe:/a:redhat:network_bound_disk_encryption_tang:1 cpe:/a:redhat:ocp_tools cpe:/a:redhat:openshift:4 cpe:/a:redhat:openshift_container_storage:4 cpe:/a:redhat:openshift_data_foundation:4 cpe:/a:redhat:openshift_devspaces:3::el8 cpe:/a:redhat:openshift_gitops:1 cpe:/a:redhat:openshift_pipelines:1 cpe:/a:redhat:openshift_service_on_aws:1 cpe:/a:redhat:openstack:16.2 cpe:/a:redhat:openstack:17.1 cpe:/a:redhat:satellite:6 cpe:/a:redhat:serverless:1 cpe:/a:redhat:service_interconnect:1 cpe:/a:redhat:storage:3 cpe:/a:redhat:trusted_artifact_signer:1 cpe:/o:redhat:enterprise_linux:7 cpe:/o:redhat:enterprise_linux:8 cpe:/o:redhat:enterprise_linux:9
Vendors & Products		Redhat Redhat amq Streams Redhat ansible Automation Platform Redhat container Native Virtualization Redhat enterprise Linux Redhat network Bound Disk Encryption Tang Redhat ocp Tools Redhat openshift Redhat openshift Container Storage Redhat openshift Data Foundation Redhat openshift Devspaces Redhat openshift Gitops Redhat openshift Pipelines Redhat openshift Service On Aws Redhat openstack Redhat satellite Redhat serverless Redhat service Interconnect Redhat storage Redhat trusted Artifact Signer
References		https://access.redhat.com/security/cve/CVE-2024-9355 https://bugzilla.redhat.com/show_bug.cgi?id=2315719

Tue, 01 Oct 2024 01:15:00 +0000

Type	Values Removed	Values Added
Description		No description is available for this CVE.
Title		golang-fips: Golang FIPS zeroed buffer
Weaknesses		CWE-457
References		https://nvd.nist.gov/vuln/detail/CVE-2024-9355 https://www.cve.org/CVERecord?id=CVE-2024-9355
Metrics	threat_severity `None`	cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L'}` threat_severity `Moderate`

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-10-01T18:17:29.420Z

Updated: 2024-10-30T22:48:58.080Z

Reserved: 2024-09-30T17:07:30.833Z

Link: CVE-2024-9355

Vulnrichment

Updated: 2024-10-01T18:37:43.886Z

NVD

Status : Awaiting Analysis

Published: 2024-10-01T19:15:09.793

Modified: 2024-10-30T23:15:13.917

Link: CVE-2024-9355

Redhat

Severity : Moderate

Publid Date: 2024-09-30T20:53:42Z

Links: CVE-2024-9355 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object