The uAMQP is a C library for AMQP 1.0 communication to Azure Cloud Services. When processing an incorrect `AMQP_VALUE` failed state, may cause a double free problem. This may cause a RCE. Update submodule with commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987.
When processing an AMQP_VALUE in an incorrect state, the library improperly frees the same memory area twice (double free, CWE-415). This is a classic memory management issue in C that can lead to heap corruption. An attacker can potentially exploit this situation to gain control over program execution flow and run arbitrary code.
An attacker can remotely execute arbitrary code (RCE) in the context of a process using the vulnerable library, without the need for authentication, which may result in complete system compromise.
The azure-uamqp-c submodule should be updated to a version containing commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987. Details are available in the security advisory GHSA-6rh4-fj44-v4jj on GitHub.
Azure uAMQP-C library (azure-uamqp-c) — versions prior to commit 2ca42b6e4e098af2d17e487814a91d05f6ae4987
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMicrosoft Azure Uamqp
APPMicrosoft< 2023-2-08
Related vulnerabilities
Use-after-free w Microsoft Azure UAMQP-C umożliwiający zdalny RCE
RCE w bibliotece Azure uAMQP-C przez integer overflow
Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów
RCE przez deserializację niezaufanych danych w Microsoft SharePoint Server
RCE w Windows Server Update Service (WSUS) — deserializacja danych