Candidate: CVE-2018-1320
PublicDate: 2019-01-07 17:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1320
 https://issues.apache.org/jira/browse/THRIFT-4506
 https://github.com/apache/thrift/commit/d973409661f820d80d72c0034d06a12348c8705e
 https://lists.apache.org/thread.html/da5234b5e78f1c99190407f791dfe1bf6c58de8d30d15974a9669be3@%3Cuser.thrift.apache.org%3E
Description:
 Apache Thrift Java client library versions 0.5.0 through 0.11.0 can bypass
 SASL negotiation isComplete validation in the
 org.apache.thrift.transport.TSaslTransport class. An assert used to
 determine if the SASL handshake had successfully completed could be
 disabled in production settings making the validation incomplete.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=918736
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N [7.5 HIGH]
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N [7.5 HIGH]


Patches_libthrift-java:
upstream_libthrift-java: released (0.9.1-2.1)
precise/esm_libthrift-java: DNE
trusty_libthrift-java: ignored (reached end-of-life)
trusty/esm_libthrift-java: DNE (trusty was needed)
xenial_libthrift-java: released (0.9.1-2.1~build0.16.04.1)
bionic_libthrift-java: released (0.9.1-2.1~build0.18.04.1)
cosmic_libthrift-java: released (0.9.1-2.1~build0.18.10.1)
disco_libthrift-java: DNE
devel_libthrift-java: DNE