Lucene search

GitHub Advisory DatabaseGHSA-68XG-GQQM-VGJ8

HistoryAug 18, 2023 - 9:50 p.m.

Puma HTTP Request/Response Smuggling vulnerability

2023-08-1821:50:05

CWE-444

GitHub Advisory Database

github.com

vulnerability

parsing

chunked transfer encoding

http request smuggling

fixed

versions prior to 6.3.1

0.003 Low

EPSS

Percentile

64.9%

JSON

Impact

Prior to version 6.3.1, puma exhibited incorrect behavior when parsing chunked transfer encoding bodies and zero-length Content-Length headers in a way that allowed HTTP request smuggling.

The following vulnerabilities are addressed by this advisory:

Incorrect parsing of trailing fields in chunked transfer encoding bodies
Parsing of blank/zero-length Content-Length headers

Patches

The vulnerability has been fixed in 6.3.1 and 5.6.7.

Workarounds

No known workarounds.

References

HTTP Request Smuggling

For more information

If you have any questions or comments about this advisory:

Open an issue in Puma
See our security policy

CPENameOperatorVersion
pumalt5.6.7
pumalt6.3.1

CPE	Name	Operator	Version
	puma	lt	5.6.7
	puma	lt	6.3.1

References

github.com/advisories/GHSA-68xg-gqqm-vgj8

github.com/puma/puma/commit/690155e7d644b80eeef0a6094f9826ee41f1080a

github.com/puma/puma/commit/7405a219801dcebc0ad6e0aa108d4319ca23f662

github.com/puma/puma/commit/ed0f2f94b56982c687452504b95d5f1fbbe3eed1

github.com/puma/puma/releases/tag/v5.6.7

github.com/puma/puma/releases/tag/v6.3.1

github.com/puma/puma/security/advisories/GHSA-68xg-gqqm-vgj8

github.com/rubysec/ruby-advisory-db/blob/master/gems/puma/CVE-2023-40175.yml

nvd.nist.gov/vuln/detail/CVE-2023-40175

0.003 Low

EPSS

Percentile

64.9%

JSON

Related for GHSA-68XG-GQQM-VGJ8