Ruby Hash Collision Denial Of Service Vulnerability
BID:51198
Info
Ruby Hash Collision Denial Of Service Vulnerability
| Bugtraq ID: | 51198 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2011-4815 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 29 2011 12:00AM |
| Updated: | Apr 13 2015 10:17PM |
| Credit: | Alexander Klink, n.runs AG and Julian Wälde, Technische Universität Darmstadt |
| Vulnerable: |
Yukihiro Matsumoto Ruby 1.8.7 -p22 Yukihiro Matsumoto Ruby 1.8.7 -p21 Yukihiro Matsumoto Ruby 1.8.7 Yukihiro Matsumoto Ruby 1.8.6 -p287 Yukihiro Matsumoto Ruby 1.8.6 -p286 Yukihiro Matsumoto Ruby 1.8.6 -p230 Yukihiro Matsumoto Ruby 1.8.6 -p229 Yukihiro Matsumoto Ruby 1.8.6 -p114 Yukihiro Matsumoto Ruby 1.8.6 Yukihiro Matsumoto Ruby 1.8.5 -p231 Yukihiro Matsumoto Ruby 1.8.5 -p230 Yukihiro Matsumoto Ruby 1.8.5 -p2 Yukihiro Matsumoto Ruby 1.8.5 -p115 Yukihiro Matsumoto Ruby 1.8.5 Yukihiro Matsumoto Ruby 1.8.4 Yukihiro Matsumoto Ruby 1.8.3 Yukihiro Matsumoto Ruby 1.8.2 pre4 Yukihiro Matsumoto Ruby 1.8.2 pre3 Yukihiro Matsumoto Ruby 1.8.2 pre2 Yukihiro Matsumoto Ruby 1.8.2 pre1 Yukihiro Matsumoto Ruby 1.8.2 Yukihiro Matsumoto Ruby 1.8.1 Yukihiro Matsumoto Ruby 1.8 Yukihiro Matsumoto Ruby 1.6.8 Yukihiro Matsumoto Ruby 1.6.7 Yukihiro Matsumoto Ruby 1.6 Yukihiro Matsumoto Ruby 1.8.7-P352 Yukihiro Matsumoto Ruby 1.8.7-p334 Yukihiro Matsumoto Ruby 1.8.7-p330 Yukihiro Matsumoto Ruby 1.8.7-p302 Yukihiro Matsumoto Ruby 1.8.7-p299 Yukihiro Matsumoto Ruby 1.8.7-p249 Yukihiro Matsumoto Ruby 1.8.7-p248 Yukihiro Matsumoto Ruby 1.8.7-p173 Yukihiro Matsumoto Ruby 1.8.7-p160 Yukihiro Matsumoto Ruby 1.8.6-p420 Yukihiro Matsumoto Ruby 1.8.6-p399 Yukihiro Matsumoto Ruby 1.8.6-p388 Yukihiro Matsumoto Ruby 1.8.6-p383 Yukihiro Matsumoto Ruby 1.8.6-p369 Yukihiro Matsumoto Ruby 1.8.6-p368 Ubuntu Ubuntu Linux 11.10 i386 Ubuntu Ubuntu Linux 11.10 amd64 Ubuntu Ubuntu Linux 11.04 powerpc Ubuntu Ubuntu Linux 11.04 i386 Ubuntu Ubuntu Linux 11.04 ARM Ubuntu Ubuntu Linux 11.04 amd64 Ubuntu Ubuntu Linux 10.10 powerpc Ubuntu Ubuntu Linux 10.10 i386 Ubuntu Ubuntu Linux 10.10 ARM Ubuntu Ubuntu Linux 10.10 amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 Redhat Enterprise Linux WS 4 Redhat Enterprise Linux Workstation Optional 6 Redhat Enterprise Linux Workstation 6 Redhat Enterprise Linux Server Optional 6 Redhat Enterprise Linux Server 6 Redhat Enterprise Linux HPC Node Optional 6 Redhat Enterprise Linux HPC Node 6 Redhat Enterprise Linux ES 4 Redhat Enterprise Linux Desktop Workstation 5 client Redhat Enterprise Linux Desktop Optional 6 Redhat Enterprise Linux Desktop 6 Redhat Enterprise Linux Desktop 5 client Redhat Enterprise Linux AS 4 Redhat Enterprise Linux Desktop version 4 Redhat Enterprise Linux 5 Server Oracle Enterprise Linux 6.2 Oracle Enterprise Linux 6 Oracle Enterprise Linux 5 Oracle Enterprise Linux 4 Mandriva Linux Mandrake 2011 x86_64 Mandriva Linux Mandrake 2011 Mandriva Linux Mandrake 2010.1 x86_64 Mandriva Linux Mandrake 2010.1 MandrakeSoft Enterprise Server 5 x86_64 MandrakeSoft Enterprise Server 5 Gentoo Linux Avaya Aura System Manager 6.3.1 Avaya Aura System Manager 6.3 Avaya Aura System Manager 6.2.3 Avaya Aura System Manager 6.2 SP3 Avaya Aura System Manager 6.2 Avaya Aura System Manager 6.1.5 Avaya Aura System Manager 6.1.3 Avaya Aura System Manager 6.1.2 Avaya Aura System Manager 6.1.1 Avaya Aura System Manager 6.1 SP2 Avaya Aura System Manager 6.1 Sp1 Avaya Aura System Manager 6.1 Apple Mac OS X Server 10.6.6 Apple Mac OS X Server 10.6.5 Apple Mac OS X Server 10.6.4 Apple Mac OS X Server 10.6.3 Apple Mac OS X Server 10.6.2 Apple Mac OS X Server 10.6.1 Apple Mac OS X Server 10.7.3 Apple Mac OS X Server 10.7.2 Apple Mac OS X Server 10.7.1 Apple Mac OS X Server 10.7 Apple Mac OS X Server 10.6.8 Apple Mac OS X Server 10.6.7 Apple Mac OS X Server 10.6 Apple Mac OS X 10.6.6 Apple Mac OS X 10.6.5 Apple Mac OS X 10.6.5 Apple Mac OS X 10.6.4 Apple Mac OS X 10.6.3 Apple Mac OS X 10.6.2 Apple Mac OS X 10.6.1 Apple Mac OS X 10.7.3 Apple Mac OS X 10.7.2 Apple Mac OS X 10.7.1 Apple Mac OS X 10.7 Apple Mac OS X 10.6.8 Apple Mac OS X 10.6.7 Apple Mac OS X 10.6 |
| Not Vulnerable: |
Yukihiro Matsumoto Ruby 1.9 Yukihiro Matsumoto Ruby 1.8.7-P357 Avaya Aura System Manager 6.3.2 Apple Mac OS X Server 10.7.4 Apple Mac OS X 10.7.4 |
Discussion
Ruby Hash Collision Denial Of Service Vulnerability
Ruby is prone to a denial-of-service vulnerability.
An attacker can exploit this issue by sending specially crafted forms in HTTP POST requests.
Successful exploits will allow attackers to cause a denial-of-service condition.
Ruby is prone to a denial-of-service vulnerability.
An attacker can exploit this issue by sending specially crafted forms in HTTP POST requests.
Successful exploits will allow attackers to cause a denial-of-service condition.
Exploit / POC
Ruby Hash Collision Denial Of Service Vulnerability
An attacker can use readily available tools to exploit this issue.
An attacker can use readily available tools to exploit this issue.
Solution / Fix
Ruby Hash Collision Denial Of Service Vulnerability
Solution:
Updates are available. Please see the references for more information.
Apple Mac OS X Server 10.6.8
Apple Mac OS X 10.7.2
Mandriva Linux Mandrake 2010.1 x86_64
Apple Mac OS X Server 10.7.1
Apple Mac OS X 10.6.8
Apple Mac OS X Server 10.7.2
Apple Mac OS X 10.7.3
MandrakeSoft Enterprise Server 5 x86_64
MandrakeSoft Enterprise Server 5
Solution:
Updates are available. Please see the references for more information.
Apple Mac OS X Server 10.6.8
-
Apple SecUpdSrvr2012-002.dmg
For Mac OS X Server v10.6.8
http://www.apple.com/support/downloads/
Apple Mac OS X 10.7.2
-
Apple MacOSXUpdCombo10.7.4.dmg
For OS X Lion v10.7 and v10.7.2
http://www.apple.com/support/downloads/
Mandriva Linux Mandrake 2010.1 x86_64
-
Mandriva ruby-1.8.7.p249-4.2mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-devel-1.8.7.p249-4.2mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-doc-1.8.7.p249-4.2mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-tk-1.8.7.p249-4.2mdv2010.2.x86_64.rpm
http://www.mandriva.com/en/downloads/
Apple Mac OS X Server 10.7.1
-
Apple MacOSXServerUpdCombo10.7.4.dmg
For OS X Lion Server v10.7 and v10.7.2
http://www.apple.com/support/downloads/
Apple Mac OS X 10.6.8
-
Apple SecUpd2012-002Snow.dmg
For Mac OS X v10.6.8
http://www.apple.com/support/downloads/
Apple Mac OS X Server 10.7.2
-
Apple MacOSXServerUpdCombo10.7.4.dmg
For OS X Lion Server v10.7 and v10.7.2
http://www.apple.com/support/downloads/
Apple Mac OS X 10.7.3
-
Apple MacOSXUpd10.7.4.dmg
For OS X Lion v10.7.3
http://www.apple.com/support/downloads/
MandrakeSoft Enterprise Server 5 x86_64
-
Mandriva ruby-1.8.7-7p72.5mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-devel-1.8.7-7p72.5mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-doc-1.8.7-7p72.5mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-tk-1.8.7-7p72.5mdvmes5.2.x86_64.rpm
http://www.mandriva.com/en/downloads/
MandrakeSoft Enterprise Server 5
-
Mandriva ruby-1.8.7-7p72.5mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-devel-1.8.7-7p72.5mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-doc-1.8.7-7p72.5mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva ruby-tk-1.8.7-7p72.5mdvmes5.2.i586.rpm
http://www.mandriva.com/en/downloads/
References
Ruby Hash Collision Denial Of Service Vulnerability
References:
References:
- n.runs-SA-2011.004 28-Dec-2011 (n.runs AG)
- Ruby 1.8.7 patchlevel 357 released (Ruby)
- Ruby Homepage (Yukihiro Matsumoto)
- ruby security update (RHSA-2012-0069) (Avaya)
- ruby security update (RHSA-2012-0070) (Avaya)
- #2011-003 multiple implementations denial-of-service via hash algorithm collisio (oCERT)
- ruby security update (RHSA-2012-0070) (Avaya)