CVE-2023-28366

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-28366
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-28366.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-28366
Downstream
Related
Published
2023-09-01T16:15:07Z
Modified
2025-10-28T09:52:28.935100Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The broker in Eclipse Mosquitto 1.3.2 through 2.x before 2.0.16 has a memory leak that can be abused remotely when a client sends many QoS 2 messages with duplicate message IDs, and fails to respond to PUBREC commands. This occurs because of mishandling of EAGAIN from the libc send function.

References

Affected packages

Git / github.com/eclipse/mosquitto

Affected ranges

Type
GIT
Repo
https://github.com/eclipse/mosquitto
Events
Introduced
aa86554592d0f647b81b13f2261de9e0a1db328b
Fixed
9e0831b3ed87f9b9a60a01f74040a077f40946c4

Git / github.com/eclipse-mosquitto/mosquitto

Affected ranges

Type
GIT
Repo
https://github.com/eclipse-mosquitto/mosquitto
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
6113eac95a9df634fbc858be542c4a0456bfe7b9

Affected versions

v1.*

v1.4
v1.4.1
v1.4.10
v1.4.11
v1.4.12
v1.4.13
v1.4.14
v1.4.15
v1.4.2
v1.4.3
v1.4.4
v1.4.5
v1.4.6
v1.4.7
v1.4.8
v1.4.9
v1.5
v1.5.1
v1.5.2
v1.5.3
v1.5.4
v1.5.5
v1.5.7
v1.5.8
v1.6
v1.6.1
v1.6.10
v1.6.11
v1.6.12
v1.6.2
v1.6.3
v1.6.4
v1.6.5
v1.6.6
v1.6.7
v1.6.8
v1.6.9

v2.*

v2.0.0
v2.0.1
v2.0.10
v2.0.11
v2.0.12
v2.0.13
v2.0.14
v2.0.15
v2.0.2
v2.0.3
v2.0.4
v2.0.5
v2.0.6
v2.0.7
v2.0.8
v2.0.9

Database specific

vanir_signatures

[
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "185657097569852611019747651375616759342",
                "209999690193844261600657640824575817910",
                "262714375737707749729449280564698862210",
                "113544244559198413476088767394824743019",
                "267326251227741227197648920533818928064",
                "258436533882721292395021596467209051712",
                "38258990596941702244179043958296589558",
                "119411380312742334604849879756551226859"
            ]
        },
        "signature_type": "Line",
        "target": {
            "file": "src/mosquitto_broker_internal.h"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-18fe6b0d"
    },
    {
        "digest": {
            "length": 449.0,
            "function_hash": "85713415389804966530401833418108576914"
        },
        "signature_type": "Function",
        "target": {
            "function": "db__message_store_find",
            "file": "src/database.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-4041cf50"
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "85203686617921334122931309773104782963",
                "23710556715149150766442125768545781868",
                "210377574969576755433176658404951119394",
                "204906490012894040605311080370175016273",
                "51352871825099287746636005341958809218",
                "245244588927891881347402652768491592215",
                "54295819527118058986274638999235741974",
                "58709611487170278350570706896418535961",
                "188966278038212901259644039296422802172",
                "121491130798754143747324310569218483875",
                "168060610469975286238834495121271480872",
                "243818753959484974924245613947040707726",
                "297675887811281111375073487685650940132",
                "246850466772222792007061566176411145115",
                "77708104591149058527723804449298898991",
                "123444508129672236059738110656937916737",
                "142485415968948635100957916050997029583",
                "130800659897187911907908921749501487661",
                "36939496372981492002085358367676240982",
                "250516870905248432996061988432922308808",
                "287564889603778662247497187946842618330",
                "155087356402055952260675224759308718474",
                "275552698052329306921886093080860526025",
                "338528681314502582076781088000297311081",
                "16779954185988160979003386046327961021",
                "218649294123002592778200418528830991825",
                "273435754704731026736493754668513711278",
                "60714744432978357492609945350922132610",
                "235384048632786554176168446497430582357",
                "108443995581779879963057415523552774923",
                "54242442024042696381071677310349715624"
            ]
        },
        "signature_type": "Line",
        "target": {
            "file": "src/context.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-4453460c"
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "225965478467171857860656219612627121543",
                "63721077317531796186912104735605219472",
                "22148613686247422070126237315808800640",
                "238133653920736806746653033640862334268"
            ]
        },
        "signature_type": "Line",
        "target": {
            "file": "lib/packet_mosq.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-48c5accd"
    },
    {
        "digest": {
            "length": 8123.0,
            "function_hash": "338417446044378657496509570798799570994"
        },
        "signature_type": "Function",
        "target": {
            "function": "handle__publish",
            "file": "src/handle_publish.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-4b0d7dea"
    },
    {
        "digest": {
            "length": 3919.0,
            "function_hash": "222293763873296556295253402508700892342"
        },
        "signature_type": "Function",
        "target": {
            "function": "db__message_insert",
            "file": "src/database.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-525fc655"
    },
    {
        "digest": {
            "length": 1333.0,
            "function_hash": "231931202059463799750601680517501328194"
        },
        "signature_type": "Function",
        "target": {
            "function": "context__cleanup",
            "file": "src/context.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-60797d52"
    },
    {
        "digest": {
            "length": 1103.0,
            "function_hash": "218124366995381517271089606604789197252"
        },
        "signature_type": "Function",
        "target": {
            "function": "db__message_reconnect_reset_incoming",
            "file": "src/database.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-6d125e39"
    },
    {
        "digest": {
            "length": 1021.0,
            "function_hash": "330822850778733328937627821807772393537"
        },
        "signature_type": "Function",
        "target": {
            "function": "packet__queue",
            "file": "lib/packet_mosq.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-8ec8a4ad"
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "148439698011285391229640061018503430027",
                "193884157198562109043756986446713071976",
                "268003913166940693463062613495572534257",
                "93470212933095506833207828998433787810",
                "293107920441093381621252540661695309611",
                "336532612033272413080647424215056336069",
                "245924028653862352046537516774580852512",
                "74417911621137080103795416538909655404",
                "328075285344273315498438826831010426003",
                "304469103496518714834391001078704961238",
                "332587571481897972826159236719468804201",
                "40450941149050339815895393838279785142",
                "225955851564214513469217147877023588670",
                "328105555249107538572249262310816041821",
                "314480754195177696370134266832588423749",
                "146211253344956192068600435308919490182",
                "132914049417686246454038195254647643029",
                "95806376992962230322255433018387416933",
                "93837510039468956996497695731577358007",
                "23677607537286836238448924762470603030",
                "251222506798970475529777658928779129044",
                "283223184173968883229575944683387597517",
                "307764528710670872279970593473122935492",
                "58628656801337995269213552703815642945",
                "265926370144549717911044797555011939509",
                "91832543265055739855786434351985934430",
                "67465570707883692632569180673446647501",
                "184166377919721310123633532536529351387",
                "266469381569079615469150354937275797959",
                "97309920803553867694542915966063473647",
                "76559853429473989291511760230405249373",
                "140462194964642300357372699844123312989",
                "207719362532559643412451287535093255728",
                "150686266850373025179799122922690869415",
                "267328691234684908791127483306560718663",
                "206185782990939382613289094370393296663",
                "336006815494273437783699405605596333829",
                "167547682325729722904831960139387663364",
                "65229955881621229300816929559970842825"
            ]
        },
        "signature_type": "Line",
        "target": {
            "file": "src/handle_publish.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-9c2297e8"
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "284678144602391982994741495688595127901",
                "90062418651277654235375254877308322526",
                "224031563416308138894487923223533272956",
                "244599704645840444909880365514971371229",
                "78662440587358656246339311389981312177",
                "328063314687465075133178712133833691034",
                "62673009183996010787818217947648658054",
                "240263279487715468915157496214607161583",
                "247437316759576094971340365246653075609",
                "114218428937112973780808941413862499688",
                "242220292696304958028714010603222851131",
                "97079123716153341892737296187379036344",
                "294716412097021236032413834554423723542",
                "245920043064185822569838423269335786319",
                "273659591907738510577578512014471303005",
                "165259626786758636005208053484067052757",
                "178959403323700001956541817957481877273",
                "285119442359140001652079688237916066386",
                "306062678102705011271277749035424012842",
                "306319640997064409408073339233210381591",
                "148390245304517491942904999764551877431",
                "4702898437259336030350534267538890076",
                "248589991316103867921190238552187422090",
                "285119442359140001652079688237916066386",
                "306062678102705011271277749035424012842",
                "297272486308017044681635062932426071974",
                "115232683780470693634812417872905333870",
                "2301202664678743650681758272746296199",
                "116566664999041821562625025468768441196",
                "265586209421451058600815514989867795147",
                "44861951891768416736155973252923372829"
            ]
        },
        "signature_type": "Line",
        "target": {
            "file": "src/database.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-ca260b6a"
    },
    {
        "digest": {
            "length": 1530.0,
            "function_hash": "138258085877140207332658078789223145234"
        },
        "signature_type": "Function",
        "target": {
            "function": "context__init",
            "file": "src/context.c"
        },
        "deprecated": false,
        "source": "https://github.com/eclipse-mosquitto/mosquitto/commit/6113eac95a9df634fbc858be542c4a0456bfe7b9",
        "signature_version": "v1",
        "id": "CVE-2023-28366-ca379b88"
    }
]