CVE-2022-41742

一、漏洞信息
漏洞编号：CVE-2022-41742
漏洞归属组件：nginx
漏洞归属的版本：1.16.1,1.18.0,1.19.1,1.21.5,1.23.2
CVSS V3.0分值：
BaseScore：7.1 High
Vector：CVSS：3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
漏洞简述：
NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.
漏洞公开时间：2022-10-20 06:15:00
漏洞创建时间：2022-10-20 07:32:09
漏洞详情参考链接：
https://nvd.nist.gov/vuln/detail/CVE-2022-41742

更多参考(点击展开)

参考来源	参考链接	来源链接
nvd	https://support.f5.com/csp/article/K28112382
nvd	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI/
nvd	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64/
nvd	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ/
nvd	https://www.debian.org/security/2022/dsa-5281
nvd	https://lists.debian.org/debian-lts-announce/2022/11/msg00031.html
redhat	https://access.redhat.com/security/cve/CVE-2022-41742
suse_bugzilla	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-41742	https://bugzilla.suse.com/show_bug.cgi?id=1204527
suse_bugzilla	https://www.cve.org/CVERecord?id=CVE-2022-41742	https://bugzilla.suse.com/show_bug.cgi?id=1204527
suse_bugzilla	http://www.cvedetails.com/cve/CVE-2022-41742/	https://bugzilla.suse.com/show_bug.cgi?id=1204527
suse_bugzilla	https://support.f5.com/csp/article/K28112382	https://bugzilla.suse.com/show_bug.cgi?id=1204527
redhat_bugzilla	https://nginx.org/en/security_advisories.html	https://bugzilla.redhat.com/show_bug.cgi?id=2141496
ubuntu	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41742	https://ubuntu.com/security/CVE-2022-41742
ubuntu	https://support.f5.com/csp/article/K28112382	https://ubuntu.com/security/CVE-2022-41742
ubuntu	https://mailman.nginx.org/archives/list/nginx-announce@nginx.org/message/RBRRON6PYBJJM2XIAPQBFBVLR4Q6IHRA/	https://ubuntu.com/security/CVE-2022-41742
ubuntu	https://github.com/nginx/nginx/commit/0d23105373e6d8a720b9826079c077b9b4be919d	https://ubuntu.com/security/CVE-2022-41742
ubuntu	https://ubuntu.com/security/notices/USN-5722-1	https://ubuntu.com/security/CVE-2022-41742
ubuntu	https://nvd.nist.gov/vuln/detail/CVE-2022-41742	https://ubuntu.com/security/CVE-2022-41742
ubuntu	https://launchpad.net/bugs/cve/CVE-2022-41742	https://ubuntu.com/security/CVE-2022-41742
ubuntu	https://security-tracker.debian.org/tracker/CVE-2022-41742	https://ubuntu.com/security/CVE-2022-41742
debian		https://security-tracker.debian.org/tracker/CVE-2022-41742
cve_search		https://support.f5.com/csp/article/K28112382
cve_search		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI/
cve_search		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64/
cve_search		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ/
cve_search		https://www.debian.org/security/2022/dsa-5281
nvd	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BPRVYA4FS34VWB4FEFYNAD7Z2LFCJVEI/
nvd	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FD6M3PVVKO35WLAA7GLDBS6TEQ26SM64/
nvd	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WBORRVG7VVXYOAIAD64ZHES2U2VIUKFQ/
nvd	https://www.debian.org/security/2022/dsa-5281
suse_bugzilla	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-41742
suse_bugzilla	https://www.cve.org/CVERecord?id=CVE-2022-41742
suse_bugzilla	http://www.cvedetails.com/cve/CVE-2022-41742/
suse_bugzilla	https://support.f5.com/csp/article/K28112382
debian	https://security-tracker.debian.org/tracker/CVE-2022-41742
nvd	https://support.f5.com/csp/article/K28112382

漏洞分析指导链接：
https://gitee.com/openeuler/cve-manager/blob/master/cve-vulner-manager/doc/md/manual.md
漏洞数据来源:
openBrain开源漏洞感知系统
漏洞补丁信息：

详情(点击展开)

影响的包	修复版本	修复补丁	问题引入补丁	来源
		https://github.com/nginx/nginx/commit/0d23105373e6d8a720b9826079c077b9b4be919d		ubuntu

二、漏洞分析结构反馈
影响性分析说明：
NGINX在模块 ngx_http_mp4_module 中存在漏洞，该问题可能允许本地攻击者导致工作进程崩溃，或者使用特制的音频或视频文件可能导致工作进程内存泄露；当nginx构建时启用ngx_http_mp4_module，并在在配置文件中使用mp4指令时，攻击者可以使用特制音频或视频文件进行攻击。
openEuler评分：
7.1
Vector：CVSS：3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
受影响版本排查(受影响/不受影响)：
1.openEuler-20.03-LTS-SP1(1.21.5):受影响
2.openEuler-20.03-LTS-SP3(1.21.5):受影响
3.openEuler-22.03-LTS(1.21.5):受影响

修复是否涉及abi变化(是/否)：
1.openEuler-20.03-LTS-SP1(1.21.5):否
2.openEuler-20.03-LTS-SP3(1.21.5):否
3.openEuler-22.03-LTS(1.21.5):否

三、漏洞修复
安全公告链接：https://www.openeuler.org/zh/security/safety-bulletin/detail/?id=openEuler-SA-2022-2023

参考网址	关联pr	状态	补丁链接
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2022-41742
https://www.opencve.io/cve/CVE-2022-41742
https://nvd.nist.gov/vuln/detail/CVE-2022-41742
https://security-tracker.debian.org/tracker/CVE-2022-41742
https://ubuntu.com/security/CVE-2022-41742
http://www.cnnvd.org.cn/web/vulnerability/queryLds.tag?qcvCnnvdid=CVE-2022-41742

说明：抱歉，当前工具暂未找到推荐补丁，请人工查找或者之后评论'/find-patch'尝试再次查找。
若人工查找到补丁，烦请在此issue下评论 '/report-patch 参考网址补丁链接1,补丁链接2' 便于我们不断优化工具，不胜感激。
如 /report-patch https://security-tracker.debian.org/tracker/CVE-2021-3997 https://github.com/systemd/systemd/commit/5b1cf7a9be37e20133c0208005274ce4a5b5c6a1

截止到2022/10/25，社区未提供补丁

影响性分析说明: NGINX在模块 ngx_http_mp4_module 中存在漏洞，该问题可能允许本地攻击者导致工作进程崩溃，或者使用特制的音频或视频文件可能导致工作进程内存泄露；当nginx构建时启用ngx_http_mp4_module，并在在配置文件中使用mp4指令时，攻击者可以使用特制音频或视频文件进行攻击。

openEuler评分: 7.1 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H)

受影响版本排查(受影响/不受影响):
1.openEuler-20.03-LTS-SP1(1.21.5):受影响
2.openEuler-20.03-LTS-SP3(1.21.5):受影响
3.openEuler-22.03-LTS(1.21.5):受影响

修复是否涉及abi变化(是/否)：
1.openEuler-20.03-LTS-SP1(1.21.5):否
2.openEuler-20.03-LTS-SP3(1.21.5):否
3.openEuler-22.03-LTS(1.21.5):否

src-openEuler/nginx

内容风险标识

评论 (9)

src-openEuler/nginx .gitee-modal { width: 500px !important; }

内容风险标识

CVE-2022-41742

评论 (9)

搜索帮助

src-openEuler/nginx