CVE-2024-43410

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-43410

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-43410.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-43410

Aliases

GHSA-vgvv-x7xg-6cqg

Published

2024-08-21T15:09:34.316Z

Modified

2025-12-08T23:57:58.013615Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Russh has an OOM Denial of Service due to allocation of untrusted amount

Details

Russh is a Rust SSH client & server library. Allocating an untrusted amount of memory allows any unauthenticated user to OOM a russh server. An SSH packet consists of a 4-byte big-endian length, followed by a byte stream of this length. After parsing and potentially decrypting the 4-byte length, russh allocates enough memory for this bytestream, as a performance optimization to avoid reallocations later. But this length is entirely untrusted and can be set to any value by the client, causing this much memory to be allocated, which will cause the process to OOM within a few such requests. This vulnerability is fixed in 0.44.1.

Database specific

{
    "cwe_ids": [
        "CWE-770"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/43xxx/CVE-2024-43410.json",
    "cna_assigner": "GitHub_M"
}

References

Affected packages

Git

github.com/eugeny/russh

Affected ranges

Type: GIT
Repo: https://github.com/eugeny/russh
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

f660ea3f64b86d11d19e33076012069f02431e55

Affected versions

0.*

0.37.0-beta.1

v0.*

v0.34.0

v0.35.0-beta.1

v0.35.0-beta.2

v0.35.0-beta.3

v0.35.0-beta.5

v0.35.0-beta.6

v0.35.0-beta.7

v0.35.0-beta.8

v0.35.0-beta.9

v0.36.0

v0.36.1

v0.37.0

v0.37.0-beta.1

v0.37.1

v0.38.0

v0.38.0-beta.1

v0.39.0

v0.39.0-beta.1

v0.40.0

v0.40.1

v0.40.2

v0.42.0

v0.43.0

v0.43.0-beta.1

v0.44.0

v0.44.0-beta.1

v0.44.0-beta.3

v0.44.0-beta.4

github.com/warp-tech/russh

Affected ranges

Type: GIT
Repo: https://github.com/warp-tech/russh
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

ba8bde99990bdeced9203b98efcfebf0c667460c

Affected versions

0.*

0.37.0-beta.1

v0.*

v0.34.0

v0.35.0-beta.1

v0.35.0-beta.2

v0.35.0-beta.3

v0.35.0-beta.5

v0.35.0-beta.6

v0.35.0-beta.7

v0.35.0-beta.8

v0.35.0-beta.9

v0.36.0

v0.36.1

v0.37.0

v0.37.0-beta.1

v0.37.1

v0.38.0

v0.38.0-beta.1

v0.39.0

v0.39.0-beta.1

v0.40.0

v0.40.1

v0.40.2

v0.42.0

v0.43.0

v0.43.0-beta.1

v0.44.0

v0.44.0-beta.1

v0.44.0-beta.3

v0.44.0-beta.4

github.com/warp-tech/warpgate

Affected ranges

Type: GIT
Repo: https://github.com/warp-tech/warpgate
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

53b0a9095be16ae79a1c4434171cc651787cf3ec

Affected versions

v0.*

v0.1.0

v0.1.1

v0.10.0

v0.10.1

v0.2.0

v0.2.1

v0.2.2

v0.2.3

v0.2.4

v0.2.5

v0.3.0

v0.4.0

v0.5.0

v0.6.1

v0.6.2

v0.6.3

v0.6.4

v0.6.5

v0.6.6

v0.7.0

v0.7.1

v0.7.2

v0.7.3

v0.7.4

v0.8.0

v0.8.1

v0.9.0

v0.9.1