ALT-PU-2025-9862-3
Closed vulnerabilities
BDU:2019-00952
Уязвимость библиотеки libzmq системы обмена сообщениями ZeroMQ, позволяющая нарушителю выполнить произвольный код
BDU:2019-03566
Уязвимость библиотеки libzmq библиотеки асинхронных сообщений ZeroMQ, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю оказать воздействие на целостность данных, получить несанкционированный доступ к защищаемой информации, а также вызвать отказ в обслуживании
BDU:2019-03576
Уязвимость библиотеки libzmq библиотеки асинхронных сообщений ZeroMQ, позволяющая нарушителю оказать воздействие на целостность данных, получить несанкционированный доступ к защищаемой информации, а также вызвать отказ в обслуживании
BDU:2021-03549
Уязвимость множества компонентов системы обмена сообщениями ZeroMQ, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2021-03710
Уязвимость библиотеки для обмена сообщениями ZeroMQ, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2021-03711
Уязвимость библиотеки для обмена сообщениями ZeroMQ, связанная с записью за границами буфера, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
BDU:2024-02576
Уязвимость асинхронной библиотеки обмена сообщениями ZeroMQ, связанная с вызовом переполнения буфера стека на сервере, позволяющая нарушителю воздействовать на конфиденциальность, целостность, а также доступность системы
BDU:2024-06962
Уязвимость компонента xpub.cpp библиотеки для обмена сообщениями ZeroMQ, связанная с неправильным освобождением памяти перед удалением последней ссылки, позволяющая нарушителю вызвать отказ в обслуживании
Modified: 2024-11-21
CVE-2019-13132
In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote, unauthenticated client connecting to a libzmq application, running with a socket listening with CURVE encryption/authentication enabled, may cause a stack overflow and overwrite the stack with arbitrary data, due to a buffer overflow in the library. Users running public servers with the above configuration are highly encouraged to upgrade as soon as possible, as there are no known mitigations.
- http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00033.html
- http://www.openwall.com/lists/oss-security/2019/07/08/6
- http://www.securityfocus.com/bid/109284
- https://fangpenlin.com/posts/2024/04/07/how-i-discovered-a-9-point-8-critical-security-vulnerability-in-zeromq-with-mostly-pure-luck/
- https://github.com/zeromq/libzmq/issues/3558
- https://github.com/zeromq/libzmq/releases
- https://lists.debian.org/debian-lts-announce/2019/07/msg00007.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AVCTNUEOFFZUNJOXFCYCF3C6Y6NDILI3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MK7SJYDJ7MMRRRPCUN3SCSE7YK6ZSHVS/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T6HINI24SL7CU6XIJWUOSGTZWEFOOL7X/
- https://news.ycombinator.com/item?id=39970716
- https://seclists.org/bugtraq/2019/Jul/13
- https://security.gentoo.org/glsa/201908-17
- https://usn.ubuntu.com/4050-1/
- https://www.debian.org/security/2019/dsa-4477
- http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00033.html
- http://www.openwall.com/lists/oss-security/2019/07/08/6
- http://www.securityfocus.com/bid/109284
- https://fangpenlin.com/posts/2024/04/07/how-i-discovered-a-9-point-8-critical-security-vulnerability-in-zeromq-with-mostly-pure-luck/
- https://github.com/zeromq/libzmq/issues/3558
- https://github.com/zeromq/libzmq/releases
- https://lists.debian.org/debian-lts-announce/2019/07/msg00007.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AVCTNUEOFFZUNJOXFCYCF3C6Y6NDILI3/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MK7SJYDJ7MMRRRPCUN3SCSE7YK6ZSHVS/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T6HINI24SL7CU6XIJWUOSGTZWEFOOL7X/
- https://news.ycombinator.com/item?id=39970716
- https://seclists.org/bugtraq/2019/Jul/13
- https://security.gentoo.org/glsa/201908-17
- https://usn.ubuntu.com/4050-1/
- https://www.debian.org/security/2019/dsa-4477
Modified: 2024-11-21
CVE-2019-6250
A pointer overflow, with code execution, was discovered in ZeroMQ libzmq (aka 0MQ) 4.2.x and 4.3.x before 4.3.1. A v2_decoder.cpp zmq::v2_decoder_t::size_ready integer overflow allows an authenticated attacker to overwrite an arbitrary amount of bytes beyond the bounds of a buffer, which can be leveraged to run arbitrary code on the target system. The memory layout allows the attacker to inject OS commands into a data structure located immediately after the problematic buffer (i.e., it is not necessary to use a typical buffer-overflow exploitation technique that changes the flow of control).
- https://github.com/zeromq/libzmq/issues/3351
- https://github.com/zeromq/libzmq/releases/tag/v4.3.1
- https://security.gentoo.org/glsa/201903-22
- https://www.debian.org/security/2019/dsa-4368
- https://github.com/zeromq/libzmq/issues/3351
- https://github.com/zeromq/libzmq/releases/tag/v4.3.1
- https://security.gentoo.org/glsa/201903-22
- https://www.debian.org/security/2019/dsa-4368
Modified: 2024-11-21
CVE-2020-15166
In ZeroMQ before version 4.3.3, there is a denial-of-service vulnerability. Users with TCP transport public endpoints, even with CURVE/ZAP enabled, are impacted. If a raw TCP socket is opened and connected to an endpoint that is fully configured with CURVE/ZAP, legitimate clients will not be able to exchange any message. Handshakes complete successfully, and messages are delivered to the library, but the server application never receives them. This is patched in version 4.3.3.
- https://github.com/zeromq/libzmq/pull/3913
- https://github.com/zeromq/libzmq/pull/3973
- https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m
- https://lists.debian.org/debian-lts-announce/2020/11/msg00017.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZ5IMNQXDB52JFBXHFLK4AHVORFELNNG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YFW2ZELCCPS4VLU4OSJOH5YL6KFKTFYW/
- https://security.gentoo.org/glsa/202009-12
- https://github.com/zeromq/libzmq/pull/3913
- https://github.com/zeromq/libzmq/pull/3973
- https://github.com/zeromq/libzmq/security/advisories/GHSA-25wp-cf8g-938m
- https://lists.debian.org/debian-lts-announce/2020/11/msg00017.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZ5IMNQXDB52JFBXHFLK4AHVORFELNNG/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YFW2ZELCCPS4VLU4OSJOH5YL6KFKTFYW/
- https://security.gentoo.org/glsa/202009-12
Modified: 2024-11-21
CVE-2021-20234
An uncontrolled resource consumption (memory leak) flaw was found in the ZeroMQ client in versions before 4.3.3 in src/pipe.cpp. This issue causes a client that connects to multiple malicious or compromised servers to crash. The highest threat from this vulnerability is to system availability.
Modified: 2024-11-21
CVE-2021-20235
There's a flaw in the zeromq server in versions before 4.3.3 in src/decoder_allocators.hpp. The decoder static allocator could have its sized changed, but the buffer would remain the same as it is a static buffer. A remote, unauthenticated attacker who sends a crafted request to the zeromq server could trigger a buffer overflow WRITE of arbitrary data if CURVE/ZAP authentication is not enabled. The greatest impact of this flaw is to application availability, data integrity, and confidentiality.
Modified: 2024-11-21
CVE-2021-20236
A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and then unsubscribing. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Modified: 2024-11-21
CVE-2021-20237
An uncontrolled resource consumption (memory leak) flaw was found in ZeroMQ's src/xpub.cpp in versions before 4.3.3. This flaw allows a remote unauthenticated attacker to send crafted PUB messages that consume excessive memory if the CURVE/ZAP authentication is disabled on the server, causing a denial of service. The highest threat from this vulnerability is to system availability.