CVE-2023-2253

A flaw was found in the /v2/_catalog endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned (query string: n). This vulnerability allows a malicious user to submit an unreasonably large value for n, causing the allocation of a massive string array, possibly causing a denial of service through excessive use of memory.

Published: Jun 6, 2023
Updated: May 10, 2024
CVE: CVE-2023-2253
GHSA: GHSA-hqxw-f8mx-cpmw
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

CWE-770
CWE-475

Affected Software
References

Software	From	Fixed in
github.com/docker/distribution	-	2.8.2-beta.1
redhat / openshift_container_platform	4.0	4.0.x

https://bugzilla.redhat.com/show_bug.cgi?id=2189886
https://github.com/distribution/distribution/commit/f55a6552b006a381d9167e328808565dd2bf77dc
https://github.com/distribution/distribution/security/advisories/GHSA-hqxw-f8mx-cpmw
https://lists.debian.org/debian-lts-announce/2023/06/msg00035.html

Vulnerability Database

289,599

CVE-2023-2253