{ "threat_severity" : "Moderate", "public_date" : "2018-03-05T00:00:00Z", "bugzilla" : { "description" : "thrift: SASL negotiation isComplete validation bypass in the org.apache.thrift.transport.TSaslTransport class", "id" : "1667204", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1667204" }, "cvss3" : { "cvss3_base_score" : "6.5", "cvss3_scoring_vector" : "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "status" : "verified" }, "cwe" : "CWE-287", "details" : [ "Apache Thrift Java client library versions 0.5.0 through 0.11.0 can bypass SASL negotiation isComplete validation in the org.apache.thrift.transport.TSaslTransport class. An assert used to determine if the SASL handshake had successfully completed could be disabled in production settings making the validation incomplete." ], "statement" : "OpenDaylight:\nOpenDaylight includes libthrift, however does not use the vulnerable functionality. OpenDaylight should be considered not affected by this flaw.", "affected_release" : [ { "product_name" : "Red Hat Fuse 7.4.0", "release_date" : "2019-08-08T00:00:00Z", "advisory" : "RHSA-2019:2413", "cpe" : "cpe:/a:redhat:jboss_fuse:7", "package" : "camel-thrift" }, { "product_name" : "Red Hat Fuse 7.4.0", "release_date" : "2019-08-08T00:00:00Z", "advisory" : "RHSA-2019:2413", "cpe" : "cpe:/a:redhat:jboss_fuse:7", "package" : "libthrift" } ], "package_state" : [ { "product_name" : "Red Hat JBoss Data Virtualization 6", "fix_state" : "Out of support scope", "package_name" : "libthrift", "cpe" : "cpe:/a:redhat:jboss_data_virtualization:6" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform 7", "fix_state" : "Not affected", "package_name" : "libthrift", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform:7" }, { "product_name" : "Red Hat JBoss Enterprise Application Platform Continuous Delivery", "fix_state" : "Not affected", "package_name" : "libthrift", "cpe" : "cpe:/a:redhat:jboss_enterprise_application_platform_cd" }, { "product_name" : "Red Hat JBoss Fuse Service Works 6", "fix_state" : "Out of support scope", "package_name" : "thrift", "cpe" : "cpe:/a:redhat:jboss_fuse_service_works:6" }, { "product_name" : "Red Hat JBoss Operations Network 3", "fix_state" : "Not affected", "package_name" : "libthrift", "cpe" : "cpe:/a:redhat:jboss_operations_network:3" }, { "product_name" : "Red Hat OpenShift Application Runtimes", "fix_state" : "Out of support scope", "package_name" : "libthrift", "cpe" : "cpe:/a:redhat:openshift_application_runtimes:1.0" }, { "product_name" : "Red Hat OpenShift Container Platform 4", "fix_state" : "Not affected", "package_name" : "thrift", "cpe" : "cpe:/a:redhat:openshift:4" }, { "product_name" : "Red Hat OpenShift Enterprise 3", "fix_state" : "Not affected", "package_name" : "thrift", "cpe" : "cpe:/a:redhat:openshift:3" }, { "product_name" : "Red Hat OpenStack Platform 10 (Newton)", "fix_state" : "Will not fix", "package_name" : "libthrift", "cpe" : "cpe:/a:redhat:openstack:10" }, { "product_name" : "Red Hat OpenStack Platform 13 (Queens)", "fix_state" : "Will not fix", "package_name" : "opendaylight", "cpe" : "cpe:/a:redhat:openstack:13" }, { "product_name" : "Red Hat OpenStack Platform 14 (Rocky)", "fix_state" : "Affected", "package_name" : "libthrift", "cpe" : "cpe:/a:redhat:openstack:14", "impact" : "low" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2018-1320\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-1320" ], "name" : "CVE-2018-1320", "csaw" : false }