Tailscale issued a security advisory for two vulnerabilities, one allowing denial of service through malformed HTTP requests and another permitting unauthorized root access via specially crafted SSH usernames. Affected users are advised to upgrade to Tailscale version 1.98.9 or newer to resolve these issues.
Tailscale reported two critical vulnerabilities: one affecting Tailscale Serve and Funnel through denial of service (DoS) and another concerning Tailscale SSH, allowing unauthorized root access. Both vulnerabilities require immediate action from users running older versions of Tailscale.
The DoS vulnerability allows attackers to send malformed HTTP requests to nodes running Tailscale Serve or Funnel, causing a CPU core to spin indefinitely. This issue arises when the request path does not start with '/', resulting in an infinite loop without a timeout.
The SSH vulnerability arises from Tailscale's acceptance of usernames with leading dashes. This allowed an attacker to connect using such a username and trigger commands that could access sensitive information. As a result, they could start a root session, violating access control lists.
The vulnerabilities have been patched in Tailscale version 1.98.9 and users running affected versions are strongly encouraged to upgrade immediately. Organizations using Tailscale must ensure their systems are updated to avoid potential exploitation of these vulnerabilities.
Tailscale credited Anthropic and Ada Logics for identifying and reporting these vulnerabilities, which helped the company in ensuring their product's security.
β¨ This summary was generated by AI from the outlets' reporting listed below. It is not independently verified and may contain errors β check the original sources. How BrevFeed works β
Tailscale issued a security advisory for two vulnerabilities, one allowing denial of service through malformed HTTP requests and another permitting unauthorized root access via specially crafted SSH usernames. Affected users are advised to upgrade to Tailscale version 1.98.9 or newer to resolve these issues.