CVE-2024-1135
Description
Gunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due to Gunicorn's handling of Transfer-Encoding headers, where it incorrectly processes requests with multiple, conflicting Transfer-Encoding headers, treating them as chunked regardless of the final encoding specified. This vulnerability allows for a range of attacks including cache poisoning, session manipulation, and data exposure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
gunicornPyPI | < 22.0.0 | 22.0.0 |
Affected products
35- osv-coords34 versionspkg:apk/chainguard/py3.10-gunicornpkg:apk/chainguard/py3.10-gunicorn-binpkg:apk/chainguard/py3.11-gunicornpkg:apk/chainguard/py3.11-gunicorn-binpkg:apk/chainguard/py3.12-gunicornpkg:apk/chainguard/py3.12-gunicorn-binpkg:apk/chainguard/py3.13-gunicornpkg:apk/chainguard/py3.13-gunicorn-binpkg:apk/chainguard/py3-gunicornpkg:apk/chainguard/py3-supported-gunicornpkg:apk/chainguard/reflexpkg:apk/wolfi/py3.10-gunicornpkg:apk/wolfi/py3.10-gunicorn-binpkg:apk/wolfi/py3.11-gunicornpkg:apk/wolfi/py3.11-gunicorn-binpkg:apk/wolfi/py3.12-gunicornpkg:apk/wolfi/py3.12-gunicorn-binpkg:apk/wolfi/py3.13-gunicornpkg:apk/wolfi/py3.13-gunicorn-binpkg:apk/wolfi/py3-gunicornpkg:apk/wolfi/py3-supported-gunicornpkg:apk/wolfi/reflexpkg:pypi/gunicornpkg:rpm/opensuse/python-gunicorn&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2pkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3pkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4pkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5pkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP6pkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP5pkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/python-gunicorn&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4
< 22.0.0-r0+ 33 more
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 0.4.9-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 22.0.0-r0
- (no CPE)range: < 0.4.9-r0
- (no CPE)range: < 22.0.0
- (no CPE)range: < 20.1.0-150400.12.6.1
- (no CPE)range: < 20.1.0-150400.12.6.1
- (no CPE)range: < 20.1.0-150400.12.6.1
- (no CPE)range: < 19.7.1-150000.3.7.1
- (no CPE)range: < 19.7.1-150000.3.7.1
- (no CPE)range: < 19.7.1-150000.3.7.1
- (no CPE)range: < 19.7.1-150000.3.7.1
- (no CPE)range: < 19.7.1-150000.3.7.1
- (no CPE)range: < 20.1.0-150400.12.6.1
- (no CPE)range: < 20.1.0-150400.12.6.1
- (no CPE)range: < 20.1.0-150400.12.6.1
Patches
Vulnerability mechanics
References
9- github.com/advisories/GHSA-w3h3-4rj7-4ph4ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-1135ghsaADVISORY
- github.com/benoitc/gunicorn/commit/ac29c9b0a758d21f1e0fb3b3457239e523fa9f1dghsaWEB
- github.com/benoitc/gunicorn/issues/3091ghsaWEB
- github.com/benoitc/gunicorn/pull/3113ghsaWEB
- github.com/benoitc/gunicorn/releases/tag/22.0.0ghsaWEB
- huntr.com/bounties/22158e34-cfd5-41ad-97e0-a780773d96c1nvdWEB
- lists.debian.org/debian-lts-announce/2024/06/msg00027.htmlnvdWEB
- lists.debian.org/debian-lts-announce/2024/12/msg00018.htmlnvdWEB
News mentions
0No linked articles in our index yet.