{
  "threat_severity" : "Important",
  "public_date" : "2024-10-29T14:18:40Z",
  "bugzilla" : {
    "description" : "waitress: Waitress has a denial of service leading to high CPU usage/resource exhaustion",
    "id" : "2322461",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2322461"
  },
  "cvss3" : {
    "cvss3_base_score" : "7.5",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-772",
  "details" : [ "Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote client closes the connection before waitress has had the opportunity to call getpeername() waitress won't correctly clean up the connection leading to the main thread attempting to write to a socket that no longer exists, but not removing it from the list of sockets to attempt to process. This leads to a busy-loop calling the write function. A remote attacker could run waitress out of available sockets with very little resources required. Waitress 3.0.1 contains fixes that remove the race condition.", "A flaw was found in the Waitress WSGI server for Python. When a remote client closes the connection before waitress has had the opportunity to call `getpeername()`, waitress will incorrectly clean up the connection, leading to the main thread attempting to write to a socket that no longer exists, and that socket is not removed from the list of sockets to attempt to process. This leads to a busy-loop calling the write function. A remote attacker could exhaust the available sockets with very little resources required." ],
  "affected_release" : [ {
    "product_name" : "Ironic content for Red Hat OpenShift Container Platform 4.12",
    "release_date" : "2024-12-05T00:00:00Z",
    "advisory" : "RHSA-2024:10535",
    "cpe" : "cpe:/a:redhat:openshift_ironic:4.12::el9",
    "package" : "python-waitress-0:3.0.1-1.el9"
  }, {
    "product_name" : "Ironic content for Red Hat OpenShift Container Platform 4.13",
    "release_date" : "2024-12-12T00:00:00Z",
    "advisory" : "RHSA-2024:10815",
    "cpe" : "cpe:/a:redhat:openshift_ironic:4.13::el9",
    "package" : "python-waitress-0:3.0.1-1.el9"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.14",
    "release_date" : "2024-11-20T00:00:00Z",
    "advisory" : "RHSA-2024:9623",
    "cpe" : "cpe:/a:redhat:openshift_ironic:4.14::el9",
    "package" : "python-waitress-0:3.0.1-1.el9"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.15",
    "release_date" : "2024-11-26T00:00:00Z",
    "advisory" : "RHSA-2024:10145",
    "cpe" : "cpe:/a:redhat:openshift_ironic:4.15::el9",
    "package" : "python-waitress-0:3.0.1-1.el9"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.16",
    "release_date" : "2024-11-20T00:00:00Z",
    "advisory" : "RHSA-2024:9618",
    "cpe" : "cpe:/a:redhat:openshift_ironic:4.16::el9",
    "package" : "python-waitress-0:3.0.1-1.el9"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.17",
    "release_date" : "2024-11-19T00:00:00Z",
    "advisory" : "RHSA-2024:9613",
    "cpe" : "cpe:/a:redhat:openshift_ironic:4.17::el9",
    "package" : "python-waitress-0:3.0.1-1.el9"
  }, {
    "product_name" : "Red Hat OpenStack Platform 16.2",
    "release_date" : "2025-01-09T00:00:00Z",
    "advisory" : "RHSA-2025:0201",
    "cpe" : "cpe:/a:redhat:openstack:16.2::el8",
    "package" : "python-waitress-0:2.0.0-4.el8ost"
  }, {
    "product_name" : "Red Hat OpenStack Platform 17.1 for RHEL 8",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1192",
    "cpe" : "cpe:/a:redhat:openstack:17.1::el8",
    "package" : "python-waitress-0:2.0.0-4.el8ost"
  }, {
    "product_name" : "Red Hat OpenStack Platform 17.1 for RHEL 9",
    "release_date" : "2025-02-10T00:00:00Z",
    "advisory" : "RHSA-2025:1191",
    "cpe" : "cpe:/a:redhat:openstack:17.1::el9",
    "package" : "python-waitress-0:2.0.0-4.el9ost"
  } ],
  "package_state" : [ {
    "product_name" : "Red Hat Ceph Storage 4",
    "fix_state" : "Out of support scope",
    "package_name" : "python-waitress",
    "cpe" : "cpe:/a:redhat:ceph_storage:4"
  }, {
    "product_name" : "Red Hat Ceph Storage 5",
    "fix_state" : "Out of support scope",
    "package_name" : "python-waitress",
    "cpe" : "cpe:/a:redhat:ceph_storage:5"
  }, {
    "product_name" : "Red Hat Openshift Container Storage 4",
    "fix_state" : "Affected",
    "package_name" : "python-waitress",
    "cpe" : "cpe:/a:redhat:openshift_container_storage:4"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2024-49769\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-49769\nhttps://github.com/Pylons/waitress/commit/1ae4e894c9f76543bee06584001583fc6fa8c95c\nhttps://github.com/Pylons/waitress/issues/418\nhttps://github.com/Pylons/waitress/pull/435\nhttps://github.com/Pylons/waitress/security/advisories/GHSA-3f84-rpwh-47g6" ],
  "name" : "CVE-2024-49769",
  "mitigation" : {
    "value" : "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
    "lang" : "en:us"
  },
  "csaw" : false
}