CVE-2023-22466

Published: 4 January 2023

Tokio is a runtime for writing applications with Rust. Starting with version 1.7.0 and prior to versions 1.18.4, 1.20.3, and 1.23.1, when configuring a Windows named pipe server, setting `pipe_mode` will reset `reject_remote_clients` to `false`. If the application has previously configured `reject_remote_clients` to `true`, this effectively undoes the configuration. Remote clients may only access the named pipe if the named pipe's associated path is accessible via a publicly shared folder (SMB). Versions 1.23.1, 1.20.3, and 1.18.4 have been patched. The fix will also be present in all releases starting from version 1.24.0. Named pipes were introduced to Tokio in version 1.7.0, so releases older than 1.7.0 are not affected. As a workaround, ensure that `pipe_mode` is set first after initializing a `ServerOptions`.

Notes

Author	Note
tyhicks	mozjs contains a copy of the SpiderMonkey JavaScript engine
mdeslaur	starting with Ubuntu 22.04, the firefox package is just a script that installs the Firefox snap

Priority

Cvss 3 Severity Score

5.4

Score breakdown

Status

Package	Release	Status
firefox Launchpad, Ubuntu, Debian	bionic	Ignored (end of standard support, was needs-triage)
	focal	Ignored (bundled deps handled by upstream in new versions)
	jammy	Not vulnerable (code not present)
	kinetic	Not vulnerable (code not present)
	lunar	Not vulnerable (code not present)
	mantic	Not vulnerable (code not present)
	trusty	Ignored (end of standard support)
	upstream	Needs triage
	xenial	Ignored (end of standard support)
mozjs38 Launchpad, Ubuntu, Debian	bionic	Needs triage
	focal	Does not exist
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
mozjs52 Launchpad, Ubuntu, Debian	bionic	Needs triage
	focal	Needs triage
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
mozjs68 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Needs triage
	jammy	Does not exist
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
mozjs78 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	jammy	Needs triage
	kinetic	Ignored (end of life, was needs-triage)
	lunar	Ignored (end of life, was needs-triage)
	mantic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
mozjs91 Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Does not exist
	jammy	Needs triage
	kinetic	Does not exist
	trusty	Does not exist
	upstream	Needs triage
	xenial	Does not exist
rust-tokio Launchpad, Ubuntu, Debian	bionic	Does not exist
	focal	Needs triage
	jammy	Needs triage
	kinetic	Ignored (end of life, was needs-triage)
	lunar	Ignored (end of life, was needs-triage)
	mantic	Needs triage
	trusty	Ignored (end of standard support)
	upstream	Needs triage
	xenial	Ignored (end of standard support)
rustc Launchpad, Ubuntu, Debian	bionic	Needed
	focal	Needed
	jammy	Needed
	kinetic	Ignored (end of life, was needs-triage)
	lunar	Ignored (end of life, was needed)
	mantic	Needed
	trusty	Needed
	upstream	Needs triage
	xenial	Needed
thunderbird Launchpad, Ubuntu, Debian	bionic	Ignored (end of standard support, was needed)
	focal	Not vulnerable (code not present)
	jammy	Not vulnerable (code not present)
	kinetic	Ignored (end of life, was needed)
	lunar	Not vulnerable (code not present)
	mantic	Not vulnerable (code not present)
	trusty	Ignored (end of standard support)
	upstream	Needs triage
	xenial	Ignored (end of standard support)

Severity score breakdown

Parameter	Value
Base score	5.4
Attack vector	Network
Attack complexity	Low
Privileges required	Low
User interaction	None
Scope	Unchanged
Confidentiality	Low
Integrity impact	Low
Availability impact	None
Vector	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›