CVE-2024-25126
Rack ReDos in content type parsing (2nd degree polynomial)
In short
Rack's content type parser can be slowed down by specially crafted HTTP headers, causing the web server to become unresponsive. This is a denial of service attack that affects the parsing logic.
Technical detail
A second-degree polynomial ReDoS vulnerability exists in Rack's media type parser when processing malicious Content-Type headers. An unauthenticated remote attacker can send crafted requests to exhaust server resources and trigger a denial of service condition. The vulnerability is resolved in versions 3.0.9.1 and 2.2.8.1.
Summary generated and translated by AI from the official description.
Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and 2.2.8.1.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
rack · rackWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://discuss.rubyonrails.org/t/denial-of-service-vulnerability-in-rack-content-type-parsing/84941https://github.com/rack/rack/commit/6efb2ceea003c4b195815a614e00438cbd543462https://github.com/rack/rack/commit/d9c163a443b8cadf4711d84bd2c58cb9ef89cf49https://github.com/rack/rack/security/advisories/GHSA-22f2-v57c-j9cxhttps://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-25126.ymlhttps://lists.debian.org/debian-lts-announce/2024/04/msg00022.htmlhttps://security.netapp.com/advisory/ntap-20240510-0005/