CVE-2024-27983

CVE-2024-27983

Name

CVE-2024-27983

Description

An attacker can make the Node.js HTTP/2 server completely unavailable by sending a small amount of HTTP/2 frames packets with a few HTTP/2 frames inside. It is possible to leave some data in nghttp2 memory after reset when headers with HTTP/2 CONTINUATION frame are sent to the server and then a TCP connection is abruptly closed by the client triggering the Http2Session destructor while header frames are still being processed (and stored in memory) causing a race condition.

NVD Severity

high

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
support@hackerone.com	https://hackerone.com/reports/2319584
support@hackerone.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JDECX4BYZLMM4S4LALN4DPZ2HUTTPLKE/
support@hackerone.com	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YDVFUH7ACZPYB3BS4SVILNOY7NQU73VW/
support@hackerone.com	http://www.openwall.com/lists/oss-security/2024/04/03/16
support@hackerone.com	https://security.netapp.com/advisory/ntap-20240510-0002/
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2024/09/msg00029.html
af854a3a-2127-422b-91ae-364da2661108	https://www.kb.cert.org/vuls/id/421644

Type

URI

support@hackerone.com

https://hackerone.com/reports/2319584

support@hackerone.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JDECX4BYZLMM4S4LALN4DPZ2HUTTPLKE/

support@hackerone.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YDVFUH7ACZPYB3BS4SVILNOY7NQU73VW/

support@hackerone.com

http://www.openwall.com/lists/oss-security/2024/04/03/16

support@hackerone.com

https://security.netapp.com/advisory/ntap-20240510-0002/

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2024/09/msg00029.html

af854a3a-2127-422b-91ae-364da2661108

https://www.kb.cert.org/vuls/id/421644

Match rules

Source package	Min version	Max version
node	>= 4.0	< 4.*
node	>= 5.0	< 5.*
node	>= 6.0	< 6.*
node	>= 7.0	< 7.*
node	>= 8.0	< 8.*
node	>= 9.0	< 9.*
node	>= 10.0	< 10.*
node	>= 11.0	< 11.*
node	>= 12.0	< 12.*
node	>= 13.0	< 13.*
node	>= 14.0	< 14.*
node	>= 15.0	< 15.*
node	>= 16.0	< 16.*
node	>= 17.0	< 17.*
node	>= 18.0	< 18.20.1
node	>= 19.0	< 19.*
node	>= 20.0	< 20.12.1
node	>= 21.0	< 21.7.2

CPE URI

Source package

Min version

Max version

node

>= 4.0

< 4.*

node

>= 5.0

< 5.*

node

>= 6.0

< 6.*

node

>= 7.0

< 7.*

node

>= 8.0

< 8.*

node

>= 9.0

< 9.*

node

>= 10.0

< 10.*

node

>= 11.0

< 11.*

node

>= 12.0

< 12.*

node

>= 13.0

< 13.*

node

>= 14.0

< 14.*

node

>= 15.0

< 15.*

node

>= 16.0

< 16.*

node

>= 17.0

< 17.*

node

>= 18.0

< 18.20.1

node

>= 19.0

< 19.*

node

>= 20.0

< 20.12.1

node

>= 21.0

< 21.7.2

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
nodejs	3.18-main	18.20.1-r0	Jakub Jirutka <jakub@jirutka.cz>	fixed
nodejs-current	3.19-community	21.7.2-r0	Patrycja Rosa <alpine@ptrcnull.me>	fixed
nodejs	3.17-main	18.20.1-r0	Jakub Jirutka <jakub@jirutka.cz>	fixed

Source package

Branch

Version

Maintainer

Status

nodejs

3.18-main

18.20.1-r0

Jakub Jirutka <jakub@jirutka.cz>

fixed

nodejs-current

3.19-community