Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-4929.NASL
HistoryJun 11, 2021 - 12:00 a.m.

Debian DSA-4929-1 : rails - security update

2021-06-1100:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

7.8 High

AI Score

Confidence

High

JSON

Multiple security issues were discovered in the Rails web framework which could result in denial of service.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-4929. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include("compat.inc");

if (description)
{
  script_id(150704);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/12/21");

  script_cve_id("CVE-2021-22880", "CVE-2021-22885", "CVE-2021-22904");
  script_xref(name:"DSA", value:"4929");

  script_name(english:"Debian DSA-4929-1 : rails - security update");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description",
    value:
"Multiple security issues were discovered in the Rails web framework
which could result in denial of service."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988214"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/source-package/rails"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/buster/rails"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2021/dsa-4929"
  );
  script_set_attribute(
    attribute:"solution",
    value:
"Upgrade the rails packages.

For the stable distribution (buster), these problems have been fixed
in version 2:5.2.2.1+dfsg-1+deb10u3."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-22885");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:rails");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/02/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/06/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/06/11");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"10.0", prefix:"rails", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-actioncable", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-actionmailer", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-actionpack", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-actionview", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-activejob", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-activemodel", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-activerecord", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-activestorage", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-activesupport", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-rails", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;
if (deb_check(release:"10.0", prefix:"ruby-railties", reference:"2:5.2.2.1+dfsg-1+deb10u3")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxrailsp-cpe:/a:debian:debian_linux:rails
debiandebian_linux10.0cpe:/o:debian:debian_linux:10.0

Related

debian 2
osv 8
openvas 11
nessus 12
freebsd 2
veracode 4
ibm 3
gitlab 2
fedora 3
debiancve 3
ubuntucve 3
github 3
redhatcve 3
prion 3
cve 3
suse 5
hackerone 2
rubygems 3
redhat 1
debian
debian
[SECURITY] [DSA 4929-1] rails security update
2021-06-09 21:11:09
[SECURITY] [DLA 2655-1] rails security update
2021-05-11 20:52:09
osv
osv
rails - security update
2021-06-09 00:00:00
rails - security update
2021-05-12 00:00:00
CVE-2021-22904
2021-06-11 16:15:11
openvas
openvas
Debian: Security Advisory (DSA-4929-1)
2021-06-11 00:00:00
Debian: Security Advisory (DLA-2655-1)
2021-05-12 00:00:00
Discourse 2.7.0.beta9 Security Update
2021-05-20 00:00:00
nessus
nessus
Debian DLA-2655-1 : rails security update
2021-05-12 00:00:00
FreeBSD : Rails -- multiple vulnerabilities (f7a00ad7-ae75-11eb-8113-08002728f74c)
2021-05-10 00:00:00
openSUSE 15 Security Update : rubygem-actionpack-5_1 (openSUSE-SU-2021:1759-1)
2021-07-16 00:00:00
freebsd
freebsd
Rails -- multiple vulnerabilities
2021-05-05 00:00:00
Rails -- multiple vulnerabilities
2021-02-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-05-06 06:23:48
Regular Expression Denial-of-Service (ReDoS)
2021-03-03 04:48:51
Information Disclosure
2021-05-06 06:31:16
ibm
ibm
Security Bulletin: A security vulnerability in Ruby on Rails affects IBM Cloud Pak for Multicloud Management Infrastructure Management
2021-07-26 21:21:03
Security Bulletin: A vulnerability in Ruby on Rails affects IBM License Metric Tool v9 (CVE-2021-22885).
2021-07-30 05:01:53
Security Bulletin: A security vulnerability in Ruby on Rails affects IBM Cloud Pak for Multicloud Management Infrastructure Management
2021-07-26 16:53:38
gitlab
gitlab
Possible Information Disclosure / Unintended Method Execution
2021-05-27 00:00:00
Uncontrolled Resource Consumption
2021-02-11 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: rubygem-activerecord-5.2.3-5.fc32
2021-03-13 20:53:47
[SECURITY] Fedora 33 Update: rubygem-actionpack-6.0.3.4-2.fc33
2021-03-12 20:30:33
[SECURITY] Fedora 33 Update: rubygem-activerecord-6.0.3.4-2.fc33
2021-03-12 20:30:33
debiancve
debiancve
CVE-2021-22880
2021-02-11 18:15:00
CVE-2021-22904
2021-06-11 16:15:00
CVE-2021-22885
2021-05-27 12:15:00
ubuntucve
ubuntucve
CVE-2021-22904
2021-06-11 00:00:00
CVE-2021-22880
2021-02-11 00:00:00
CVE-2021-22885
2021-05-27 00:00:00
github
github
Possible DoS Vulnerability in Action Controller Token Authentication
2021-05-05 19:49:12
Active Record subject to Regular Expression Denial-of-Service (ReDoS)
2021-03-02 03:44:14
Action Pack contains Information Disclosure / Unintended Method Execution vulnerability
2021-05-05 19:49:02
redhatcve
redhatcve
CVE-2021-22904
2021-05-19 00:25:31
CVE-2021-22885
2021-05-05 19:17:09
CVE-2021-22880
2021-02-18 15:38:20
prion
prion
Authentication flaw
2021-06-11 16:15:00
Input validation
2021-02-11 18:15:00
Design/Logic Flaw
2021-05-27 12:15:00
cve
cve
CVE-2021-22904
2021-06-11 16:15:00
CVE-2021-22880
2021-02-11 18:15:00
CVE-2021-22885
2021-05-27 12:15:00
suse
suse
Security update for rubygem-actionpack-5_1 (important)
2021-07-11 00:00:00
Security update for rubygem-activerecord-5_1 (moderate)
2021-11-09 00:00:00
Security update for rubygem-activerecord-5_1 (moderate)
2021-11-12 00:00:00
hackerone
hackerone
Ruby on Rails: Regular expression denial of service in ActiveRecord's PostgreSQL Money type
2020-11-01 14:22:54
Ruby on Rails: redirect_to(["string"]) remote code execution
2021-02-18 16:40:59
rubygems
rubygems
Possible DoS Vulnerability in Action Controller Token Authentication
2021-05-04 21:00:00
Possible DoS Vulnerability in Active Record PostgreSQL adapter
2021-02-09 21:00:00
Possible Information Disclosure / Unintended Method Execution in Action Pack
2021-05-04 21:00:00
redhat
redhat
(RHSA-2021:4702) Moderate: Satellite 6.10 Release
2021-11-16 13:58:57

7.8 High

AI Score

Confidence

High

JSON
Related for DEBIAN_DSA-4929.NASL
debian2osv8openvas11nessus12freebsd2veracode4ibm3gitlab2fedora3debiancve3ubuntucve3github3redhatcve3prion3cve3suse5hackerone2rubygems3redhat1