CVE-2024-42381

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-42381
os/linux/elf.rb in Homebrew brew before 4.2.20 uses ldd to load ELF files obtained from untrusted sources, which allows attackers to achieve code execution via an ELF file with a custom .interp section. NOTE: this code execution would occur during an un-sandboxed binary relocation phase, which occurs before a user would expect execution of downloaded package content. (237d1e783f7ee261beaba7d3f6bde22da7148b0a was the tested vulnerable version.)

8.3 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.6 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://blog.trailofbits.com/2024/07/30/our-audit-of-homebrew/
https://brew.sh/2024/07/30/homebrew-security-audit/
https://github.com/Homebrew/brew/commit/916b37388d3851a8a93a8e9b4adc38873680ead7
https://github.com/Homebrew/brew/pull/17136
https://github.com/Homebrew/brew/releases/tag/4.2.20
https://github.com/Homebrew/brew/tree/237d1e783f7ee261beaba7d3f6bde22da7148b0a
https://github.com/trailofbits/publications/blob/master/reviews/2023-08-28-homebrew-securityreview.pdf
Configurations

No configuration.

History

01 Aug 2024, 13:59

Type Values Removed Values Added
CWE CWE-830

31 Jul 2024, 12:57

Type Values Removed Values Added
Summary
  • (es) os/linux/elf.rb en Homebrew Brew anterior a 4.2.20 usa ldd para cargar archivos ELF obtenidos de fuentes no confiables, lo que permite a los atacantes lograr la ejecución de código a través de un archivo ELF con una sección .interp personalizada. NOTA: la ejecución de este código ocurriría durante una fase de reubicación binaria sin espacio aislado, que ocurre antes de que un usuario espere la ejecución del contenido del paquete descargado. (237d1e783f7ee261beaba7d3f6bde22da7148b0a fue la versión vulnerable probada).

31 Jul 2024, 06:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-07-31 06:15

Updated : 2024-08-01 13:59

NVD link : CVE-2024-42381

Mitre link : CVE-2024-42381

CVE.ORG link : CVE-2024-42381

JSON object : View

Products Affected

No product.

CWE
CWE-830

Inclusion of Web Functionality from an Untrusted Source