http://bugzilla.opensuse.org/show_bug.cgi?id=1184428 Bug ID: 1184428 Summary: VUL-0: CVE-2021-21404: syncthing: relay server `strelaysrv` can be caused to crash and exit by sending a relay message with a negative length field Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.2 Hardware: Other URL: https://smash.suse.de/issue/281245/ OS: Other Status: NEW Severity: Minor Priority: P5 - None Component: Basesystem Assignee: screening-team-bugs@suse.de Reporter: abergmann@suse.com QA Contact: security-team@suse.de Found By: Security Response Team Blocker: --- CVE-2021-21404 Syncthing is a continuous file synchronization program. In Syncthing before version 1.15.0, the relay server `strelaysrv` can be caused to crash and exit by sending a relay message with a negative length field. Similarly, Syncthing itself can crash for the same reason if given a malformed message from a malicious relay server when attempting to join the relay. Relay joins are essentially random (from a subset of low latency relays) and Syncthing will by default restart when crashing, at which point it's likely to pick another non-malicious relay. This flaw is fixed in version 1.15.0. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-21404 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21404 https://github.com/syncthing/syncthing/commit/fb4fdaf4c0a79c22cad000c42ac139... https://github.com/syncthing/syncthing/releases/tag/v1.15.0 https://github.com/syncthing/syncthing/security/advisories/GHSA-x462-89pf-6r... https://pkg.go.dev/github.com/syncthing/syncthing -- You are receiving this mail because: You are on the CC list for the bug.