SB2023112403 - Red Hat Enterprise Linux 8 update for the ruby:2.5 module

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) HTTP response splitting (CVE-ID: CVE-2021-33621)

The vulnerability allows a remote attacker to perform HTTP splitting attacks.

The vulnerability exists due to software does not corrector process CRLF character sequences when handling cookies. A remote attacker can send specially crafted request containing CRLF sequence and make the application to send a split HTTP response.

Successful exploitation of the vulnerability may allow an attacker perform cache poisoning attack.

2) Type conversion (CVE-ID: CVE-2022-28739)

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a type conversion error in some convertion methods like Kernel#Float</code> and <code>String#to_f. A remote attacker can pass specially crafted data to the affected application, trigger memory corruption and execute arbitrary code in the system.

3) Incorrect Regular Expression (CVE-ID: CVE-2023-28755)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient input validation when processing URLs. A remote attacker can pass specially crafted URL to the application and perform regular expression denial of service (ReDos) attack.

4) Incorrect Regular Expression (CVE-ID: CVE-2023-28756)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient input validation when processing strings that have specific characters. A remote attacker can pass specially crafted data to the application and perform regular expression denial of service (ReDos) attack.

Remediation

Install update from vendor's website.

References

• https://access.redhat.com/errata/RHSA-2023:7025