SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   Ruby Vendors:   Matsumoto, Yukihiro
(Fedora Issues Fix for FC3) Ruby Unsafe Temporary Files May Let Local Users Gain Elevated Privileges
SecurityTracker Alert ID:  1012211
SecurityTracker URL:  http://securitytracker.com/id/1012211
CVE Reference:   CVE-2004-0755   (Links to External Site)
Date:  Nov 12 2004
Impact:   Disclosure of system information, Disclosure of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 1.8.1 and prior versions
Description:   A vulnerability was reported in Ruby in the processing of temporary files. A local user may be able to gain elevated privileges.

Andres Salomon reported that CGI::Session stores FileStore session data in an unsafe manner. Files are created in the 'tmp' directory without the proper permissions. As a result, a local user may be able to access the files and take over a target user's session.

Impact:   A local user may be able to hijack a target user's session.
Solution:   Fedora has released a fix, available at:

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

e423a05f3e6a63767c6ab5b886c882ad SRPMS/ruby-1.8.1-7.FC3.1.src.rpm
fb594cf216b9725b7fd4b8347e79eb1a x86_64/ruby-1.8.1-7.FC3.1.x86_64.rpm
4528129815539f8fe3ebc6c69b648d33 x86_64/irb-1.8.1-7.FC3.1.x86_64.rpm
48e0554aa63e4765dfbd2d71dafccde7 x86_64/debug/ruby-debuginfo-1.8.1-7.FC3.1.x86_64.rpm
9a8ca938db4721ab82132394c4f56299 x86_64/ruby-devel-1.8.1-7.FC3.1.x86_64.rpm
e8878f90c73e5045d936e5fa2e70e846 x86_64/ruby-docs-1.8.1-7.FC3.1.x86_64.rpm
47d9d40d7fef2ef8a92cf9c660f255dc x86_64/ruby-libs-1.8.1-7.FC3.1.x86_64.rpm
1f1919213fa7c8861605d1e0c982e422 x86_64/ruby-mode-1.8.1-7.FC3.1.x86_64.rpm
a891cb18610b83c0fb6fed21b7ee7641 x86_64/ruby-tcltk-1.8.1-7.FC3.1.x86_64.rpm
2f26d34775553cee2980645c6654aed9 x86_64/ruby-libs-1.8.1-7.FC3.1.i386.rpm
912970b09bb1e07d026a9d4ff719cd98 i386/ruby-devel-1.8.1-7.FC3.1.i386.rpm
177f1ba8bf1d42de2335ec0177f14fe0 i386/irb-1.8.1-7.FC3.1.i386.rpm
a92fe04818616b255e04cf4379e3e7be i386/ruby-1.8.1-7.FC3.1.i386.rpm
29bc7a12865e313eb41c90cc9be69f10 i386/debug/ruby-debuginfo-1.8.1-7.FC3.1.i386.rpm
130d73a9b8eaeceee0b7e10a8e80aec4 i386/ruby-docs-1.8.1-7.FC3.1.i386.rpm
2f26d34775553cee2980645c6654aed9 i386/ruby-libs-1.8.1-7.FC3.1.i386.rpm
5e2582af078ebb5218eb4dcdece19062 i386/ruby-mode-1.8.1-7.FC3.1.i386.rpm
76ef077fc025371af17239f7e3769d8b i386/ruby-tcltk-1.8.1-7.FC3.1.i386.rpm

Vendor URL:  www.ruby-lang.org/ (Links to External Site)
Cause:   Access control error
Underlying OS:  Linux (Red Hat Fedora)
Underlying OS Comments:  FC3

Message History:   This archive entry is a follow-up to the message listed below.
Aug 16 2004 Ruby Unsafe Temporary Files May Let Local Users Gain Elevated Privileges



 Source Message Contents

Subject:  [SECURITY] Fedora Core 3 Update: ruby-1.8.1-7.FC3.1



---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-403
2004-11-11
---------------------------------------------------------------------

Product     : Fedora Core 3
Name        : ruby
Version     : 1.8.1
Release     : 7.FC3.1
Summary     : An interpreter of object-oriented scripting language
Description :
Ruby is the interpreted scripting language for quick and easy
object-oriented programming.  It has many features to process text
files and to do system management tasks (as in Perl).  It is simple,
straight-forward, and extensible.

---------------------------------------------------------------------

* Thu Nov 11 2004 Akira TAGOH <tagoh@redhat.com> - 1.8.1-7.FC3.1

- security fix [CAN-2004-0983]
- security fix [CAN-2004-0755]
- ruby-1.8.1-cgi-dos.patch: applied to fix a denial of service issue. (#138366)
- ruby-1.8.1-cgi_session_perms.patch: sets the permission of the session data
  file to 0600. (#130063)

* Sat Oct 30 2004 Akira TAGOH <tagoh@redhat.com> - 1.8.1-7.fc3

- added openssl-devel and db4-devel into BuildRequires. (#137479)


---------------------------------------------------------------------
This update can be downloaded from:
  http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

e423a05f3e6a63767c6ab5b886c882ad  SRPMS/ruby-1.8.1-7.FC3.1.src.rpm
fb594cf216b9725b7fd4b8347e79eb1a  x86_64/ruby-1.8.1-7.FC3.1.x86_64.rpm
4528129815539f8fe3ebc6c69b648d33  x86_64/irb-1.8.1-7.FC3.1.x86_64.rpm
48e0554aa63e4765dfbd2d71dafccde7  x86_64/debug/ruby-debuginfo-1.8.1-7.FC3.1.x86_64.rpm
9a8ca938db4721ab82132394c4f56299  x86_64/ruby-devel-1.8.1-7.FC3.1.x86_64.rpm
e8878f90c73e5045d936e5fa2e70e846  x86_64/ruby-docs-1.8.1-7.FC3.1.x86_64.rpm
47d9d40d7fef2ef8a92cf9c660f255dc  x86_64/ruby-libs-1.8.1-7.FC3.1.x86_64.rpm
1f1919213fa7c8861605d1e0c982e422  x86_64/ruby-mode-1.8.1-7.FC3.1.x86_64.rpm
a891cb18610b83c0fb6fed21b7ee7641  x86_64/ruby-tcltk-1.8.1-7.FC3.1.x86_64.rpm
2f26d34775553cee2980645c6654aed9  x86_64/ruby-libs-1.8.1-7.FC3.1.i386.rpm
912970b09bb1e07d026a9d4ff719cd98  i386/ruby-devel-1.8.1-7.FC3.1.i386.rpm
177f1ba8bf1d42de2335ec0177f14fe0  i386/irb-1.8.1-7.FC3.1.i386.rpm
a92fe04818616b255e04cf4379e3e7be  i386/ruby-1.8.1-7.FC3.1.i386.rpm
29bc7a12865e313eb41c90cc9be69f10  i386/debug/ruby-debuginfo-1.8.1-7.FC3.1.i386.rpm
130d73a9b8eaeceee0b7e10a8e80aec4  i386/ruby-docs-1.8.1-7.FC3.1.i386.rpm
2f26d34775553cee2980645c6654aed9  i386/ruby-libs-1.8.1-7.FC3.1.i386.rpm
5e2582af078ebb5218eb4dcdece19062  i386/ruby-mode-1.8.1-7.FC3.1.i386.rpm
76ef077fc025371af17239f7e3769d8b  i386/ruby-tcltk-1.8.1-7.FC3.1.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------

--
fedora-announce-list mailing list
fedora-announce-list@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-announce-list

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC