[rubysec-announce] Symbol DoS vulnerability in Active Record

65 views

Skip to first unread message

phi...@state.io

unread,

Mar 18, 2013, 4:38:20 PM3/18/13

to rubysec-...@googlegroups.com

Aaron Patterson writes,

There is a symbol DoS vulnerability in Active Record. This vulnerability has been assigned the CVE identifier CVE-2013-1854.
Versions Affected: 3.2.x, 3.1.x, 2.3.x
Not affected: 3.0.x
Fixed Versions: 3.2.13, 3.1.12, 2.3.18

[...]

Carefully crafted requests can coerce `params[:name]` to return a hash, and the keys to that hash may be converted to symbols.

More information: https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/jgJ4cjjS8FE

The gist of it goes, symbols in Ruby are not garbage collected; an attacker can flood your app with loads of symbols and bring your machine to its knees.

Regards,

http://rubysec.github.com

Reply all

Reply to author

Forward

0 new messages