No Limit on Number of Open Sessions Leads to Memory Exhaustion and Impacts Availability

CVE-2024-1930

6.5MEDIUM

Key Information

Vendor: Fedora
Status: Dnf5daemon-server
Vendor: CVE Published:; 8 May 2024

Summary

No Limit on Number of Open Sessions / Bad Session Close Behaviour in dnf5daemon-server before 5.1.17 allows a malicious user to impact Availability via No Limit on Number of Open Sessions. There is no limit on how many sessions D-Bus clients may create using the `open_session()` D-Bus method. For each session a thread is created in dnf5daemon-server. This spends a couple of hundred megabytes of memory in the process. Further connections will become impossible, likely because no more threads can be spawned by the D-Bus service.

Affected Version(s)

dnf5daemon-server = 5.1.16<=

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published.
May 8, 2024
Vulnerability Reserved.
Feb 27, 2024

Collectors

NVD DatabaseMitre Database