CVE-2018-5704

NameCVE-2018-5704
DescriptionOpen On-Chip Debugger (OpenOCD) 0.10.0 does not block attempts to use HTTP POST for sending data to 127.0.0.1 port 4444, which allows remote attackers to conduct cross-protocol scripting attacks, and consequently execute arbitrary commands, via a crafted web site.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-1253-1, DSA-4093-1
Debian Bugs887488

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
openocd (PTS)bullseye0.11.0~rc2-1fixed
bookworm0.12.0-1fixed
forky, sid, trixie0.12.0-3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
openocdsourcewheezy0.5.0-1+deb7u1DLA-1253-1
openocdsourcejessie0.8.0-4+deb7u1DSA-4093-1
openocdsourcestretch0.9.0-1+deb8u1DSA-4093-1
openocdsource(unstable)0.10.0-4887488

Notes

https://sourceforge.net/p/openocd/mailman/message/36188041/
http://openocd.zylin.com/4330
http://openocd.zylin.com/4331
http://openocd.zylin.com/4335
Search for package or bug name: Reporting problems