CVE-2023-22792

2023-02-0920:15:11

Debian Security Bug Tracker

security-tracker.debian.org

vulnerability

regular expression

dos

action dispatch

cpu

memory

upgrade

workaround

unix

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

42.9%

JSON

A regular expression based DoS vulnerability in Action Dispatch <6.0.6.1,< 6.1.7.1, and <7.0.4.1. Specially crafted cookies, in combination with a specially crafted X_FORWARDED_HOST header can cause the regular expression engine to enter a state of catastrophic backtracking. This can cause the process to use large amounts of CPU and memory, leading to a possible DoS vulnerability All users running an affected release should either upgrade or use one of the workarounds immediately.

OSVersionArchitecturePackageVersionFilename
Debian12allrails< 2:6.1.7.3+dfsg-1rails_2:6.1.7.3+dfsg-1_all.deb
Debian11allrails< 2:6.0.3.7+dfsg-2+deb11u1rails_2:6.0.3.7+dfsg-2+deb11u1_all.deb
Debian10allrails<= 2:5.2.2.1+dfsg-1+deb10u3rails_2:5.2.2.1+dfsg-1+deb10u3_all.deb
Debian999allrails< 2:6.1.7.3+dfsg-1rails_2:6.1.7.3+dfsg-1_all.deb
Debian13allrails< 2:6.1.7.3+dfsg-1rails_2:6.1.7.3+dfsg-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	rails	< 2:6.1.7.3+dfsg-1	rails_2:6.1.7.3+dfsg-1_all.deb
Debian	11	all	rails	< 2:6.0.3.7+dfsg-2+deb11u1	rails_2:6.0.3.7+dfsg-2+deb11u1_all.deb
Debian	10	all	rails	<= 2:5.2.2.1+dfsg-1+deb10u3	rails_2:5.2.2.1+dfsg-1+deb10u3_all.deb
Debian	999	all	rails	< 2:6.1.7.3+dfsg-1	rails_2:6.1.7.3+dfsg-1_all.deb
Debian	13	all	rails	< 2:6.1.7.3+dfsg-1	rails_2:6.1.7.3+dfsg-1_all.deb