Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-2275.NASLHistoryJul 14, 2020 - 12:00 a.m.
Debian DLA-2275-1 : ruby-rack security update
2020-07-1400:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
23
6.9 Medium
AI Score
Confidence
High
The following CVEs were reported against src:ruby-rack.
CVE-2020-8161
A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in information disclosure.
CVE-2020-8184
A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie prefix.
For Debian 9 stretch, these problems have been fixed in version 1.6.4-4+deb9u2.
We recommend that you upgrade your ruby-rack packages.
For the detailed security status of ruby-rack please refer to its security tracker page at:
https://security-tracker.debian.org/tracker/ruby-rack
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-2275-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('compat.inc');
if (description)
{
script_id(138389);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/01");
script_cve_id("CVE-2020-8161", "CVE-2020-8184");
script_name(english:"Debian DLA-2275-1 : ruby-rack security update");
script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The following CVEs were reported against src:ruby-rack.
CVE-2020-8161
A directory traversal vulnerability exists in rack < 2.2.0 that allows
an attacker perform directory traversal vulnerability in the
Rack::Directory app that is bundled with Rack which could result in
information disclosure.
CVE-2020-8184
A reliance on cookies without validation/integrity check security
vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is
possible for an attacker to forge a secure or host-only cookie prefix.
For Debian 9 stretch, these problems have been fixed in version
1.6.4-4+deb9u2.
We recommend that you upgrade your ruby-rack packages.
For the detailed security status of ruby-rack please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/ruby-rack
NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://lists.debian.org/debian-lts-announce/2020/07/msg00006.html");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/stretch/ruby-rack");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/ruby-rack");
script_set_attribute(attribute:"solution", value:
"Upgrade the affected ruby-rack package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-8184");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-8161");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/06/19");
script_set_attribute(attribute:"patch_publication_date", value:"2020/07/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/07/14");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ruby-rack");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Debian Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"9.0", prefix:"ruby-rack", reference:"1.6.4-4+deb9u2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | ruby-rack | p-cpe:/a:debian:debian_linux:ruby-rack |
| debian | debian_linux | 9.0 | cpe:/o:debian:debian_linux:9.0 |
Related
suse
suse
Security update for rubygem-rack (moderate)
2022-09-23 00:00:00
Security update for rmt-server (important)
2020-11-21 00:00:00
Security update for rmt-server (important)
2020-11-23 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2275-1)
2020-07-17 00:00:00
Ubuntu: Security Advisory (USN-4561-1)
2020-10-01 00:00:00
Ubuntu: Security Advisory (USN-4561-2)
2021-04-07 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 20.04 LTS : Rack vulnerabilities (USN-4561-2)
2021-04-06 00:00:00
SUSE SLES15 Security Update : rubygem-rack (SUSE-SU-2022:3347-1)
2022-09-24 00:00:00
Ubuntu 18.04 LTS : Rack vulnerabilities (USN-4561-1)
2020-09-30 00:00:00
ubuntu
ubuntu
Rack vulnerabilities
2021-04-06 00:00:00
Rack vulnerabilities
2020-09-30 00:00:00
Rack vulnerabilities
2022-12-13 00:00:00
osv
osv
ruby-rack - security update
2020-07-10 00:00:00
ruby-rack vulnerabilities
2021-04-06 11:13:44
ruby-rack vulnerabilities
2020-09-30 19:08:21
debian
debian
[SECURITY] [DLA 2275-1] ruby-rack security update
2020-07-10 19:56:49
[SECURITY] [DLA 3298-1] ruby-rack security update
2023-01-30 21:54:32
[SECURITY] [DLA 2216-1] ruby-rack security update
2020-05-22 18:32:39
prion
prion
Input validation
2020-06-19 17:15:00
Directory traversal
2020-07-02 19:15:00
Information disclosure
2020-10-02 15:15:00
hackerone
hackerone
cve
cve
ubuntucve
ubuntucve
ibm
ibm
Security Bulletin: Aspera on Cloud CVE-2020-8184
2020-09-28 20:47:48
mageia
mageia
Updated ruby-rack packages fix security vulnerability
2020-08-01 02:25:42
Updated ruby-rack packages fix security vulnerability
2020-06-11 01:57:01
veracode
veracode
Directory Traversal
2020-05-13 02:57:36
Insecure Cookie Parsing
2020-06-16 07:11:11
github
github
Directory traversal in Rack::Directory app bundled with Rack
2020-07-06 21:31:02
debiancve
debiancve
redhatcve
redhatcve
rubygems
rubygems
Cookie Prefix Spoofing in CGI::Cookie.parse
2021-11-23 21:00:00
f5
f5
K11435435 : PHP vulnerability CVE-2020-7070
2020-10-22 00:00:00
alpinelinux
alpinelinux
CVE-2020-7070
2020-10-02 15:15:00
friendsofphp
friendsofphp
amazon
amazon
Medium: php72, php73
2020-10-26 18:16:00
redhat
redhat
(RHSA-2020:4366) Important: Satellite 6.8 release
2020-10-27 12:45:25