MGASA-2020-0252 - Updated ruby-rack packages fix security vulnerability

Publication date: 10 Jun 2020
URL: https://advisories.mageia.org/MGASA-2020-0252.html
Type: security
Affected Mageia releases: 7
CVE: CVE-2020-8161,
     CVE-2019-16782

Updated ruby-rack packages fix security vulnerabilities:

There's a possible information leak / session hijack vulnerability in
Rack(RubyGem rack). Attackers may be able to find and hijack sessions
by using timing attacks targeting the session id. Session ids are usually
stored and indexed in a database that uses some kind of scheme for
speeding up lookups of that session id. By carefully measuring the amount
of time it takes to look up a session, an attacker may be able to find a
valid session id and hijack the session. The session id itself may be
generated randomly, but the way the session is indexed by the backing
store does not use a secure comparison (CVE-2019-16782).

If certain directories exist in a director that is managed by
Rack::Directory, an attacker could, using this vulnerability, read the
contents of files on the server that were outside of the root specified
in the Rack::Directory initializer (CVE-2020-8161).

References:
- https://bugs.mageia.org/show_bug.cgi?id=26688
- https://bugs.mageia.org/show_bug.cgi?id=25915
- https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/HZXMWILCICQLA2BYSP6I2CRMUG53YBLX/
- https://www.debian.org/lts/security/2020/dla-2216
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8161
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16782

SRPMS:
- 7/core/ruby-rack-2.0.8-1.mga7

Mageia 2020-0252: ruby-rack security update

Updated ruby-rack packages fix security vulnerabilities: There's a possible information leak / session hijack vulnerability in Rack(RubyGem rack)

Summary

Updated ruby-rack packages fix security vulnerabilities:
There's a possible information leak / session hijack vulnerability in Rack(RubyGem rack). Attackers may be able to find and hijack sessions by using timing attacks targeting the session id. Session ids are usually stored and indexed in a database that uses some kind of scheme for speeding up lookups of that session id. By carefully measuring the amount of time it takes to look up a session, an attacker may be able to find a valid session id and hijack the session. The session id itself may be generated randomly, but the way the session is indexed by the backing store does not use a secure comparison (CVE-2019-16782).
If certain directories exist in a director that is managed by Rack::Directory, an attacker could, using this vulnerability, read the contents of files on the server that were outside of the root specified in the Rack::Directory initializer (CVE-2020-8161).

References

- https://bugs.mageia.org/show_bug.cgi?id=26688

- https://bugs.mageia.org/show_bug.cgi?id=25915

- https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/HZXMWILCICQLA2BYSP6I2CRMUG53YBLX/

- https://www.debian.org/lts/security/2020/dla-2216

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8161

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16782

Resolution

MGASA-2020-0252 - Updated ruby-rack packages fix security vulnerability

SRPMS

- 7/core/ruby-rack-2.0.8-1.mga7

Severity
Publication date: 10 Jun 2020
URL: https://advisories.mageia.org/MGASA-2020-0252.html
Type: security
CVE: CVE-2020-8161, CVE-2019-16782

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved