SB2022062023 - SUSE update for rubygem-actionpack-5_1, rubygem-activesupport-5

Security Bulletin ID SB2022062023

Severity

Medium

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Use-after-free (CVE-ID: CVE-2021-22904)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error in the Token Authentication logic in Action Controller. A remote attacker can send a specially crafted request and cause a denial of service condition on the target system.

2) Information disclosure (CVE-ID: CVE-2022-23633)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists in the Rack middleware package of RubyGems, where response bodies will not close under certain circumstances. A remote attacker can iterate requests to force ActionDispatch::Executor to not close, allowing subsequent requests to leak data from ActiveSupport::CurrentAttributes.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2022/suse-su-20222108-1/

SB2022062023 - SUSE update for rubygem-actionpack-5_1, rubygem-activesupport-5_1

Breakdown by Severity

Description

Remediation

References