Main Vulnerability Database SB20250328101

SB20250328101 - Anolis OS update for ruby:3.0 module

Published: March 28, 2025

Security Bulletin ID SB20250328101

Severity

High

Patch available

YES

Number of vulnerabilities 6

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.

1) HTTP response splitting (CVE-ID: CVE-2021-33621)

The vulnerability allows a remote attacker to perform HTTP splitting attacks.

The vulnerability exists due to software does not corrector process CRLF character sequences when handling cookies. A remote attacker can send specially crafted request containing CRLF sequence and make the application to send a split HTTP response.

Successful exploitation of the vulnerability may allow an attacker perform cache poisoning attack.

2) Incorrect Regular Expression (CVE-ID: CVE-2023-28755)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient input validation when processing URLs. A remote attacker can pass specially crafted URL to the application and perform regular expression denial of service (ReDos) attack.

3) Incorrect Regular Expression (CVE-ID: CVE-2023-28756)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient input validation when processing strings that have specific characters. A remote attacker can pass specially crafted data to the application and perform regular expression denial of service (ReDos) attack.

4) Out-of-bounds read (CVE-ID: CVE-2024-27280)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in the "ungetbyte" and "ungetc" methods. A remote attacker can trigger an out-of-bounds read error and read contents of memory on the system.

5) Input validation error (CVE-ID: CVE-2024-27281)

The vulnerability allows a remote attacker to execute arbitrary code on the system.

The vulnerability exists due to insufficient validation of user-supplied input when parsing .rdoc_options as a YAML file. A remote attacker can pass specially crafted input to the application and execute arbitrary code on the target system.

6) Out-of-bounds read (CVE-ID: CVE-2024-27282)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in Regex search. A remote attacker can pass specially crafted string to the application, trigger an out-of-bounds read error and read contents of heap memory on the system.

Remediation

Install update from vendor's website.

References

https://anas.openanolis.cn/errata/detail/ANSA-2024:0428

Vulnerable Software

Anolis OS: 8
rubygems-devel: before 3.2.33-143.0.1
rubygems: before 3.2.33-143.0.1
rubygem-typeprof: before 0.15.2-143.0.1
rubygem-test-unit: before 3.3.7-143.0.1
rubygem-rss: before 0.2.9-143.0.1
rubygem-rexml: before 3.2.5-143.0.1
rubygem-rdoc: before 6.3.4.1-143.0.1
rubygem-rbs: before 1.4.0-143.0.1
rubygem-rake: before 13.0.3-143.0.1
rubygem-power_assert: before 1.2.1-143.0.1
rubygem-mysql2-doc: before 0.5.3-2.0.1
rubygem-minitest: before 5.14.2-143.0.1
rubygem-irb: before 1.3.5-143.0.1
rubygem-bundler: before 2.2.33-143.0.1
ruby-doc: before 3.0.7-143.0.1
ruby-default-gems: before 3.0.7-143.0.1
rubygem-psych: before 3.3.2-143.0.1
rubygem-mysql2: before 0.5.3-2.0.1
rubygem-json: before 2.5.1-143.0.1
rubygem-io-console: before 0.5.7-143.0.1
rubygem-bigdecimal: before 3.0.0-143.0.1
ruby-libs: before 3.0.7-143.0.1
ruby-devel: before 3.0.7-143.0.1
ruby: before 3.0.7-143.0.1
rubygem-pg-doc: before 1.2.3-1
rubygem-pg: before 1.2.3-1
rubygem-abrt-doc: before 0.4.0-1
rubygem-abrt: before 0.4.0-1

SB20250328101 - Anolis OS update for ruby:3.0 module

Breakdown by Severity

Description

Remediation

References

Please verify you're human