Bloomberg Comdb2 Distributed Transaction Heartbeat Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in the Bloomberg Comdb2 database version 8.1. The issue arises when the database handles distributed transaction heartbeats. An attacker can connect to a database instance over TCP and send a specially crafted protocol buffer message, leading to a denial-of-service condition by causing the database process to crash.

Impact

Exploiting this vulnerability causes the Comdb2 database process to terminate unexpectedly, leading to a denial-of-service condition where the database becomes unavailable.

Reproduction

The vulnerability can be reproduced by sending two 'HEARTBEAT' protocol buffer messages with the same transaction ID to a Comdb2 database instance. This can be done by connecting to the database over TCP and using the 'newsql' application socket to send the crafted messages. The first message will be processed normally, but the second will trigger an 'abort' command, causing the database process to crash.

Remediation

Users can upgrade to the latest version of Bloomberg Comdb2 to address this vulnerability.