CVE-2024-7589 — Race Condition in Freebsd

CWE-362 — Race Condition CWE-364 — Signal Handler Race Condition6 documents6 sources

Severity

8.1HIGHNVD

EPSS

17.4%

top 4.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Freebsd

Timeline

PublishedAug 12

Description

A signal handler in sshd(8) may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds (120 by default). This signal handler executes in the context of the sshd(8)'s privileged code, which is not sandboxed and runs with full root privileges. This issue is another instance of the problem in CVE-2024-6387 addressed by FreeBSD-SA-24:04.openssh. The faulty code in this case is from the integration of…

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5freebsd/freebsd14.1-RELEASE — p3+2

▶NVDfreebsd/freebsd13.1 — 13.3+4

🔴Vulnerability Details

GHSA

GHSA-j7jm-6q5x-ffr4: A signal handler in sshd(8) may call a logging function that is not async-signal-safe↗2024-08-12

▶

CVEList

OpenSSH pre-authentication async signal safety issue↗2024-08-11

▶

📋Vendor Advisories

Red Hat

openssh: OpenSSH pre-authentication async signal safety issue↗2024-08-12

▶

BSD

FreeBSD-SA-24:08.openssh: OpenSSH pre-authentication async signal safety issue↗2024-08-07

▶

Debian

CVE-2024-7589: openssh - A signal handler in sshd(8) may call a logging function that is not async-signal...↗2024

▶