Stack-based Buffer Overflow

Summary

A stack overflow vulnerability was discovered in Rancher's "/v3-public/authproviders" public API endpoint, allowing an unauthenticated attacker to trigger a Denial of Service (DoS). By submitting specially crafted data to the API, a malicious user could cause the Rancher server to crash, though no unauthorized or incorrect data would be stored. This issue does not impact downstream clusters managed by Rancher. The vulnerability affects users leveraging both external authentication providers and Rancher's local authentication. This issue affects github.com/rancher/rancher versions 2.8.x prior to 2.8.13-alpha1, 2.9.x prior to 2.9.7-alpha1, 2.10.x prior to 2.10.3-alpha1, and 2.11.0-alpha1.