Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM0684B6EF77D1410AC06A948047A89E4D17FCDD21A5483EEC0F2F622AF80CAD45
HistoryJan 30, 2024 - 8:30 a.m.

Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from go-yaml, OpenSSL, GnuTLS , OpenTelemetry-Go, go-toolset and urllib3

2024-01-3008:30:04
www.ibm.com
22
ibm mq operator
queue manager
container images
vulnerability
go-yaml
openssl
gnutls
opentelemetry-go
urllib3
denial of service
information leakage

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.6%

JSON

Summary

OpenSSL, go-yaml, GnuTLS , OpenTelemetry-Go and urllib3 are consumed through RedHat UBI, go-toolset and OSE packages. These packages are shipped with IBM MQ Operator and IBM supplied MQ Advanced container images.

Vulnerability Details

CVEID:CVE-2022-28948
**DESCRIPTION:**Go-Yaml is vulnerable to a denial of service, caused by a flaw in the Unmarshal function. By sending a specially-crafted input, a remote attacker could exploit this vulnerability to cause the program to crash.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/226978 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2023-3446
**DESCRIPTION:**OpenSSL is vulnerable to a denial of service, caused by a flaw when using the DH_check(), DH_check_ex() or EVP_PKEY_param_check() functions to check a DH key or DH parameters. By sending a specially crafted request using long DH keys or parameters, a remote attacker could exploit this vulnerability to cause long delays, and results in a denial of service condition.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/261026 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2023-3817
**DESCRIPTION:**OpenSSL is vulnerable to a denial of service, caused by a flaw when using the DH_check(), DH_check_ex() or EVP_PKEY_param_check() functions to check a DH key or DH parameters. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause long delays, and results in a denial of service condition.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/262046 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)

CVEID:CVE-2023-5981
**DESCRIPTION:**GNU GnuTLS could allow a remote attacker to obtain sensitive information, caused by a timing sidechannel issue during RSA-PSK key exchange. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/271914 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2023-45803
**DESCRIPTION:**urllib3 could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw with not remove the HTTP request body when an HTTP redirect response using status 303. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to obtain sensitive information, and use this information to launch further attacks against the affected system.
CVSS Base score: 4.2
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/269079 for the current score.
CVSS Vector: (CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2023-45142
**DESCRIPTION:**OpenTelemetry OpenTelemetry-Go Contrib is vulnerable to a denial of service, caused by an unbound cardinality metrics flaw in otelhttp. By sending specially crafted HTTP requests, a remote attacker could exploit this vulnerability to cause a resource consumption, and results in a denial of service condition.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/268837 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)

CVEID:CVE-2023-39323
**DESCRIPTION:**Golang Go could allow a remote attacker to execute arbitrary code on the system, caused by improper enforcement of line directive restrictions in the “//go:cgo_” directives. By providing specially crafted input in the linker and compiler flags, an attacker could exploit this vulnerability to execute arbitrary code on the system. Note: The line directive requires the absolute path of the file in which the directive lives, which makes exploiting this issue significantly more complex.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/268524 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2023-5678
**DESCRIPTION:**Openssl is vulnerable to a denial of service, caused by a flaw when using DH_generate_key() function to generate an X9.42 DH key. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/270771 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L)

Affected Products and Versions

Affected Product(s) Version(s)
IBM MQ Operator

**CD:**v3.0.0

LTS: v2.0.0 - 2.0.17

**Other Release:**v2.4.0 - v2.4.6, v2.3.0 - 2.3.3, v2.2.0 - v2.2.2, 2.3.0 - 2.3.3
IBM supplied MQ Advanced container images|

**C****D:**9.3.4.0-r1

**
LTS: **9.2.0.1-r1-eus, 9.2.0.2-r1-eus, 9.2.0.2-r2-eus, 9.2.0.4-r1-eus, 9.2.0.5-r1-eus,
9.2.0.5-r2-eus, 9.2.0.5-r3-eus, 9.2.0.6-r1-eus, 9.2.0.6-r2-eus, 9.2.0.6-r3-eus, 9.2.3.0-r1,
9.2.4.0-r1, 9.2.5.0-r1, 9.2.5.0-r2, 9.2.5.0-r3, 9.3.0.0-r1, 9.3.0.0-r2, 9.3.0.0-r3, 9.3.0.1-r1,
9.3.0.1-r2, 9.3.0.1-r3, 9.3.0.1-r4, 9.3.0.3-r1, 9.3.0.4-r1, 9.3.0.4-r2, 9.3.0.5-r1, 9.3.0.5-r2,
9.3.0.5-r3, 9.3.0.6-r1, 9.3.0.10-r1, 9.3.0.10-r2, 9.3.0.11-r1,9.3.0.11-r2

**
Other Release: **9.2.0.1-r1-eus, 9.2.0.2-r1-eus, 9.2.0.2-r2-eus, 9.2.0.4-r1-eus, 9.2.0.5-r1-eus, 9.2.0.5-r2-eus, 9.2.0.5-r3-eus, 9.2.0.6-r1-eus, 9.2.0.6-r2-eus, 9.2.0.6-r3-eus, 9.2.3.0-r1, 9.2.4.0-r1, 9.2.5.0-r1, 9.2.5.0-r2, 9.2.5.0-r3, 9.3.0.0-r1, 9.3.0.0-r2, 9.3.0.0-r3, 9.3.0.1-r1, 9.3.0.1-r2, 9.3.0.1-r3, 9.3.0.1-r4, 9.3.0.3-r1, 9.3.0.4-r1, 9.3.0.4-r2, 9.3.0.5-r1, 9.3.0.5-r2, 9.3.0.5-r3, 9.3.0.6-r1, 9.3.1.0-r1, 9.3.1.0-r2, 9.3.1.0-r3, 9.3.1.1-r1, 9.3.2.0-r1, 9.3.2.0-r2, 9.3.2.1-r1, 9.3.2.1-r2, 9.3.3.0-r1, 9.3.3.0-r2, 9.3.3.1-r1, 9.3.3.1-r2, 9.3.3.2-r1, 9.3.3.2-r2, 9.3.3.2-r3

Remediation/Fixes

Issue mentioned by this security bulletin is addressed in -

  • IBM MQ Operator v3.0.1 CD release that included IBM supplied MQ Advanced 9.3.4.1-r1 container image
  • IBM MQ Operator v2.0.18 LTS release that included IBM supplied MQ Advanced 9.3.0.15-r1 container image
  • IBM MQ Operator v2.4.7 release that included IBM supplied MQ Advanced 9.3.3.3-r1 container image

IBM strongly recommends applying the latest container images.

**IBM MQ Operator 3.0. 1 CD release details:

**

Image

|

Fix Version

|

Registry

|

Image Location

—|—|—|—

ibm-mq-operator

|

v3.0.1

|

icr.io

|

icr.io/cpopen/ibm-mq-operator@sha256:e471631d97a17ea6e0226a7a0f4406494784a600cdcd325c422bda80a7b8d916

ibm-mqadvanced-server

|

9.3.4.1-r1

|

cp.icr.io

|

cp.icr.io/cp/ibm-mqadvanced-server@sha256:7ee7e7447bdf1770be5f61998e1b16651a8bfa096ae1321421d9fd3a92e16cc0

ibm-mqadvanced-server-integration

|

9.3.4.1-r1

|

cp.icr.io

|

cp.icr.io/cp/ibm-mqadvanced-server-integration@sha256:7daeb310c5b5370ecf269379e811f04a8cac5e8ec5b2044da3d49d036e7915f9

ibm-mqadvanced-server-dev

|

9.3.4.1-r1

|

icr.io

|

icr.io/ibm-messaging/ibm-mqadvanced-server-dev@sha256:ed3a2e9c2d01a8c90034c038380c4ed1f9ed0454755bf9947f497034aa270b0f

**IBM MQ Operator V2.0.18 LTS release details: **

Image

|

Fix Version

|

Registry

|

Image Location

—|—|—|—

ibm-mq-operator

|

v2.0.18

|

icr.io

|

icr.io/cpopen/ibm-mq-operator@sha256:0a6c5724f2a5b15888ba96cb3e352d1d3764e0a172bfc545bac8d93f3e6c0d30

ibm-mqadvanced-server

|

9.3.0.15-r1

|

cp.icr.io

|

cp.icr.io/cp/ibm-mqadvanced-server@sha256:f47bd07ee4e5a4520a4433c25a37eacf12cf2d784e392a158147dd7e8d02728f

ibm-mqadvanced-server-integration

|

9.3.0.15-r1

|

cp.icr.io

|

cp.icr.io/cp/ibm-mqadvanced-server-integration@sha256:910051bec3e0b4b3a73f1c6a2ba81810456d95ad7a278f780c5be65702857b9f

ibm-mqadvanced-server-dev

|

9.3.0.15-r1

|

icr.io

|

icr.io/ibm-messaging/ibm-mqadvanced-server-dev@sha256:f8fba60180a2c4bc0e4413ce2bd4e4d1685ecfa698c240f0e2b83239af147cdf

IBM MQ Operator V2.4.7 CD release details:

Image

|

Fix Version

|

Registry

|

Image Location

—|—|—|—

ibm-mq-operator

|

v2.4.7

|

icr.io

|

icr.io/cpopen/ibm-mq-operator@
sha256:3f608e938103469813421716a2e6313b9285589e87a4f9fb658b27daca0bcdeb

ibm-mqadvanced-server

|

9.3.3.3-r1

|

cp.icr.io

|

cp.icr.io/cp/ibm-mqadvanced-server@sha256:0645d8ebeb4397098f440cac1151927615a1354788c0b482cce2942f12d551dd

ibm-mqadvanced-server-integration

|

9.3.3.3-r1

|

cp.icr.io

|

cp.icr.io/cp/ibm-mqadvanced-server-integration@sha256:fc12c2cb58ef76ddb6ed8db048357c4cb072c1c10de66b1f315751b357d01569

ibm-mqadvanced-server-dev

|

9.3.3.3-r1

|

icr.io

|

icr.io/ibm-messaging/ibm-mqadvanced-server-dev@sha256:087213d3479a764863c58005462dafc5b88d6cdbb5796c2cec6fc4061859ea73

Workarounds and Mitigations

None

Affected configurations

Vulners
Node
ibmibm_mq_certified_container_softwareMatch3.0.1
OR
ibmibm_mq_certified_container_softwareMatch2.0.18
OR
ibmibm_mq_certified_container_softwareMatch2.4.7

Related

nessus 103
osv 7
openvas 54
redhat 3
oraclelinux 2
almalinux 1
ubuntu 3
cve 2
debiancve 2
f5 2
prion 1
alpinelinux 2
amazon 7
cvelist 2
nvd 2
ubuntucve 1
slackware 1
broadcom 1
redos 1
debian 1
ibm 1
nessus
nessus
RHEL 8 : openssl (RHSA-2023:7877)
2023-12-19 00:00:00
EulerOS 2.0 SP5 : openssl111d (EulerOS-SA-2024-1157)
2024-02-08 00:00:00
EulerOS Virtualization 3.0.6.6 : shim (EulerOS-SA-2024-1666)
2024-05-17 00:00:00
osv
osv
Low: openssl security update
2023-12-19 00:00:00
openssl1.0 vulnerabilities
2024-03-21 16:53:43
CVE-2023-5678
2023-11-06 16:15:42
openvas
openvas
Huawei EulerOS: Security Advisory for openssl111d (EulerOS-SA-2024-1157)
2024-02-09 00:00:00
Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1666)
2024-05-16 00:00:00
Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2024-1164)
2024-02-09 00:00:00
redhat
redhat
(RHSA-2023:7877) Low: openssl security update
2023-12-18 07:10:45
(RHSA-2024:0154) Low: openssl security update
2024-01-10 16:25:10
(RHSA-2024:0208) Low: openssl security update
2024-01-11 21:04:17
oraclelinux
oraclelinux
openssl security update
2023-12-18 00:00:00
openssl security update
2024-01-10 00:00:00
almalinux
almalinux
Low: openssl security update
2023-12-19 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2024-03-21 00:00:00
OpenSSL vulnerabilities
2023-10-18 00:00:00
OpenSSL vulnerabilities
2023-10-25 00:00:00
cve
cve
CVE-2023-5678
2023-11-06 16:15:42
CVE-2023-3817
2023-07-31 16:15:10
debiancve
debiancve
CVE-2023-5678
2023-11-06 16:15:42
CVE-2023-3817
2023-07-31 16:15:10
f5
f5
K000138242 : OpenSSL vulnerability CVE-2023-5678
2024-01-17 00:00:00
K000137969 : OpenSSL vulnerability CVE-2023-3817
2023-12-19 00:00:00
prion
prion
Design/Logic Flaw
2023-11-06 16:15:00
alpinelinux
alpinelinux
CVE-2023-5678
2023-11-06 16:15:42
CVE-2023-3817
2023-07-31 16:15:10
amazon
amazon
Medium: openssl
2023-11-29 22:19:00
Medium: edk2
2023-08-17 11:58:00
Medium: openssl11
2023-08-31 22:28:00
cvelist
cvelist
CVE-2023-5678 Excessive time spent in DH check / generation with large Q parameter value
2023-11-06 15:47:30
CVE-2023-3817 Excessive time spent checking DH q parameter value
2023-07-31 15:34:13
nvd
nvd
CVE-2023-5678
2023-11-06 16:15:42
CVE-2023-3817
2023-07-31 16:15:10
ubuntucve
ubuntucve
CVE-2023-5678
2023-11-06 00:00:00
slackware
slackware
[slackware-security] openssl
2023-08-02 17:08:29
broadcom
broadcom
Excessive time spent checking DH q parameter value (CVE-2023-3817)
2024-04-16 00:00:00
redos
redos
ROS-20230907-04
2023-09-07 00:00:00
debian
debian
[SECURITY] [DLA 3530-1] openssl security update
2023-08-16 05:56:34
ibm
ibm
Security Bulletin: Due to the use of OpenSSL, IBM CICS TX Advanced is vulnerable to a denial of service (DOS) (CVE-2023-3817 and CVE-2023-3446).
2024-02-13 17:00:03

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.6%

JSON
Related for 0684B6EF77D1410AC06A948047A89E4D17FCDD21A5483EEC0F2F622AF80CAD45
nessus103osv7openvas54redhat3oraclelinux2almalinux1ubuntu3cve2debiancve2f52prion1alpinelinux2amazon7cvelist2nvd2ubuntucve1slackware1broadcom1redos1debian1ibm1