Summary: | <dev-ruby/rails-{3.2.21,4.0.12,4.1.8}: Arbitrary file existence disclosure in Action Pack (CVE-2014-{7818,7829}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Hans de Graaff <graaff> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | trivial | CC: | ruby |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://weblog.rubyonrails.org/2014/11/17/Rails-3-2-21-4-0-12-and-4-1-8-have-been-released/ | ||
Whiteboard: | ~4 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Hans de Graaff
2014-11-17 19:14:06 UTC
Rails version 3.2.21, 4.0.12, and 4.1.8 are now in the tree. (In reply to Hans de Graaff from comment #1) > Rails version 3.2.21, 4.0.12, and 4.1.8 are now in the tree. Thanks, Hans. Can you please drop the vulnerable versions and then we can call this bug resolved? Vulnerable versions have now been removed. CVE-2014-7829 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-7829): Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via vectors involving a \ (backslash) character, a similar issue to CVE-2014-7818. CVE-2014-7818 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-7818): Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.20, 4.0.x before 4.0.11, 4.1.x before 4.1.7, and 4.2.x before 4.2.0.beta3, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via a /..%2F sequence. |