Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-24790 (GCVE-0-2022-24790)
Vulnerability from cvelistv5 – Published: 2022-03-30 21:50 – Updated: 2025-04-23 18:43
VLAI
EPSS
Title
HTTP Request Smuggling in puma
Summary
Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.
Severity
9.1 (Critical)
CWE
- CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling')
Assigner
References
8 references
| URL | Tags |
|---|---|
| https://github.com/puma/puma/security/advisories/… | x_refsource_CONFIRM |
| https://github.com/puma/puma/commit/5bb7d202e24de… | x_refsource_MISC |
| https://www.debian.org/security/2022/dsa-5146 | vendor-advisoryx_refsource_DEBIAN |
| https://security.gentoo.org/glsa/202208-28 | vendor-advisoryx_refsource_GENTOO |
| https://lists.debian.org/debian-lts-announce/2022… | mailing-listx_refsource_MLIST |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
Impacted products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T04:20:50.515Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"name": "DSA-5146",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2022/dsa-5146"
},
{
"name": "GLSA-202208-28",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"name": "[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"name": "FEDORA-2022-de968d1b6c",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/"
},
{
"name": "FEDORA-2022-52d0032596",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/"
},
{
"name": "FEDORA-2022-7c8b29195f",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2022-24790",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-23T15:50:02.994180Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-23T18:43:11.083Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "puma",
"vendor": "puma",
"versions": [
{
"status": "affected",
"version": "\u003c 4.3.12"
},
{
"status": "affected",
"version": "\u003e= 5.0.0, \u003c 5.6.4"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-444",
"description": "CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-09-12T19:06:40.000Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"name": "DSA-5146",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2022/dsa-5146"
},
{
"name": "GLSA-202208-28",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"name": "[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"name": "FEDORA-2022-de968d1b6c",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/"
},
{
"name": "FEDORA-2022-52d0032596",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/"
},
{
"name": "FEDORA-2022-7c8b29195f",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/"
}
],
"source": {
"advisory": "GHSA-h99w-9q5r-gjq9",
"discovery": "UNKNOWN"
},
"title": "HTTP Request Smuggling in puma",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2022-24790",
"STATE": "PUBLIC",
"TITLE": "HTTP Request Smuggling in puma"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "puma",
"version": {
"version_data": [
{
"version_value": "\u003c 4.3.12"
},
{
"version_value": "\u003e= 5.0.0, \u003c 5.6.4"
}
]
}
}
]
},
"vendor_name": "puma"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9",
"refsource": "CONFIRM",
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"name": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5",
"refsource": "MISC",
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"name": "DSA-5146",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2022/dsa-5146"
},
{
"name": "GLSA-202208-28",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"name": "[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"name": "FEDORA-2022-de968d1b6c",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/"
},
{
"name": "FEDORA-2022-52d0032596",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/"
},
{
"name": "FEDORA-2022-7c8b29195f",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/"
}
]
},
"source": {
"advisory": "GHSA-h99w-9q5r-gjq9",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2022-24790",
"datePublished": "2022-03-30T21:50:09.000Z",
"dateReserved": "2022-02-10T00:00:00.000Z",
"dateUpdated": "2025-04-23T18:43:11.083Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2022-24790",
"date": "2026-05-27",
"epss": "0.00417",
"percentile": "0.61935"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*\", \"versionEndExcluding\": \"4.3.12\", \"matchCriteriaId\": \"345E03BE-2C86-4772-AA09-236D912EC708\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*\", \"versionStartIncluding\": \"5.0.0\", \"versionEndExcluding\": \"5.6.4\", \"matchCriteriaId\": \"C0FF1252-8D38-4832-B0B0-CAEDB2E13F0B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E30D0E6F-4AE8-4284-8716-991DFA48CC5D\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.\"}, {\"lang\": \"es\", \"value\": \"Puma es un servidor HTTP versi\\u00f3n 1.1 simple, r\\u00e1pido, multihilo y paralelo para aplicaciones Ruby/Rack. Cuando es usado Puma detr\\u00e1s de un proxy que no comprueba apropiadamente que la petici\\u00f3n HTTP entrante coincide con el est\\u00e1ndar RFC7230, Puma y el proxy del frontend pueden no estar de acuerdo en d\\u00f3nde empieza y termina una petici\\u00f3n. Esto permitir\\u00eda contrabandear peticiones por medio del proxy del front-end a Puma. La vulnerabilidad ha sido corregida en versiones 5.6.4 y 4.3.12. Se recomienda a usuarios actualizar lo antes posible. Mitigaci\\u00f3n: cuando despliegue un proxy frente a Puma, habilite todas las funciones para asegurarse de que la petici\\u00f3n se ajusta al est\\u00e1ndar RFC7230\"}]",
"id": "CVE-2022-24790",
"lastModified": "2024-11-21T06:51:06.130",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\", \"baseScore\": 9.1, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.2}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:P/A:N\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2022-03-30T22:15:08.500",
"references": "[{\"url\": \"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://security.gentoo.org/glsa/202208-28\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2022/dsa-5146\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/202208-28\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2022/dsa-5146\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-444\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2022-24790\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2022-03-30T22:15:08.500\",\"lastModified\":\"2024-11-21T06:51:06.130\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.\"},{\"lang\":\"es\",\"value\":\"Puma es un servidor HTTP versi\u00f3n 1.1 simple, r\u00e1pido, multihilo y paralelo para aplicaciones Ruby/Rack. Cuando es usado Puma detr\u00e1s de un proxy que no comprueba apropiadamente que la petici\u00f3n HTTP entrante coincide con el est\u00e1ndar RFC7230, Puma y el proxy del frontend pueden no estar de acuerdo en d\u00f3nde empieza y termina una petici\u00f3n. Esto permitir\u00eda contrabandear peticiones por medio del proxy del front-end a Puma. La vulnerabilidad ha sido corregida en versiones 5.6.4 y 4.3.12. Se recomienda a usuarios actualizar lo antes posible. Mitigaci\u00f3n: cuando despliegue un proxy frente a Puma, habilite todas las funciones para asegurarse de que la petici\u00f3n se ajusta al est\u00e1ndar RFC7230\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":9.1,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":5.2},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:P/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-444\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*\",\"versionEndExcluding\":\"4.3.12\",\"matchCriteriaId\":\"345E03BE-2C86-4772-AA09-236D912EC708\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndExcluding\":\"5.6.4\",\"matchCriteriaId\":\"C0FF1252-8D38-4832-B0B0-CAEDB2E13F0B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80E516C0-98A4-4ADE-B69F-66A772E2BAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E30D0E6F-4AE8-4284-8716-991DFA48CC5D\"}]}]}],\"references\":[{\"url\":\"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://security.gentoo.org/glsa/202208-28\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5146\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202208-28\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5146\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"cna\": {\"affected\": [{\"product\": \"puma\", \"vendor\": \"puma\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 4.3.12\"}, {\"status\": \"affected\", \"version\": \"\u003e= 5.0.0, \u003c 5.6.4\"}]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.\"}], \"metrics\": [{\"cvssV3_1\": {\"attackComplexity\": \"LOW\", \"attackVector\": \"NETWORK\", \"availabilityImpact\": \"NONE\", \"baseScore\": 9.1, \"baseSeverity\": \"CRITICAL\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"scope\": \"UNCHANGED\", \"userInteraction\": \"NONE\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\", \"version\": \"3.1\"}}], \"problemTypes\": [{\"descriptions\": [{\"cweId\": \"CWE-444\", \"description\": \"CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)\", \"lang\": \"en\", \"type\": \"CWE\"}]}], \"providerMetadata\": {\"dateUpdated\": \"2022-09-12T19:06:40.000Z\", \"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\"}, \"references\": [{\"tags\": [\"x_refsource_CONFIRM\"], \"url\": \"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\"}, {\"tags\": [\"x_refsource_MISC\"], \"url\": \"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\"}, {\"name\": \"DSA-5146\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\"], \"url\": \"https://www.debian.org/security/2022/dsa-5146\"}, {\"name\": \"GLSA-202208-28\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\"], \"url\": \"https://security.gentoo.org/glsa/202208-28\"}, {\"name\": \"[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\"], \"url\": \"https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html\"}, {\"name\": \"FEDORA-2022-de968d1b6c\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"], \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\"}, {\"name\": \"FEDORA-2022-52d0032596\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"], \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\"}, {\"name\": \"FEDORA-2022-7c8b29195f\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"], \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\"}], \"source\": {\"advisory\": \"GHSA-h99w-9q5r-gjq9\", \"discovery\": \"UNKNOWN\"}, \"title\": \"HTTP Request Smuggling in puma\", \"x_legacyV4Record\": {\"CVE_data_meta\": {\"ASSIGNER\": \"security-advisories@github.com\", \"ID\": \"CVE-2022-24790\", \"STATE\": \"PUBLIC\", \"TITLE\": \"HTTP Request Smuggling in puma\"}, \"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"product_name\": \"puma\", \"version\": {\"version_data\": [{\"version_value\": \"\u003c 4.3.12\"}, {\"version_value\": \"\u003e= 5.0.0, \u003c 5.6.4\"}]}}]}, \"vendor_name\": \"puma\"}]}}, \"data_format\": \"MITRE\", \"data_type\": \"CVE\", \"data_version\": \"4.0\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.\"}]}, \"impact\": {\"cvss\": {\"attackComplexity\": \"LOW\", \"attackVector\": \"NETWORK\", \"availabilityImpact\": \"NONE\", \"baseScore\": 9.1, \"baseSeverity\": \"CRITICAL\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"scope\": \"UNCHANGED\", \"userInteraction\": \"NONE\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\", \"version\": \"3.1\"}}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)\"}]}]}, \"references\": {\"reference_data\": [{\"name\": \"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\", \"refsource\": \"CONFIRM\", \"url\": \"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\"}, {\"name\": \"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\", \"refsource\": \"MISC\", \"url\": \"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\"}, {\"name\": \"DSA-5146\", \"refsource\": \"DEBIAN\", \"url\": \"https://www.debian.org/security/2022/dsa-5146\"}, {\"name\": \"GLSA-202208-28\", \"refsource\": \"GENTOO\", \"url\": \"https://security.gentoo.org/glsa/202208-28\"}, {\"name\": \"[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update\", \"refsource\": \"MLIST\", \"url\": \"https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html\"}, {\"name\": \"FEDORA-2022-de968d1b6c\", \"refsource\": \"FEDORA\", \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\"}, {\"name\": \"FEDORA-2022-52d0032596\", \"refsource\": \"FEDORA\", \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\"}, {\"name\": \"FEDORA-2022-7c8b29195f\", \"refsource\": \"FEDORA\", \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\"}]}, \"source\": {\"advisory\": \"GHSA-h99w-9q5r-gjq9\", \"discovery\": \"UNKNOWN\"}}}, \"adp\": [{\"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T04:20:50.515Z\"}, \"title\": \"CVE Program Container\", \"references\": [{\"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"], \"url\": \"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9\"}, {\"tags\": [\"x_refsource_MISC\", \"x_transferred\"], \"url\": \"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\"}, {\"name\": \"DSA-5146\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\", \"x_transferred\"], \"url\": \"https://www.debian.org/security/2022/dsa-5146\"}, {\"name\": \"GLSA-202208-28\", \"tags\": [\"vendor-advisory\", \"x_refsource_GENTOO\", \"x_transferred\"], \"url\": \"https://security.gentoo.org/glsa/202208-28\"}, {\"name\": \"[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update\", \"tags\": [\"mailing-list\", \"x_refsource_MLIST\", \"x_transferred\"], \"url\": \"https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html\"}, {\"name\": \"FEDORA-2022-de968d1b6c\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"], \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\"}, {\"name\": \"FEDORA-2022-52d0032596\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"], \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\"}, {\"name\": \"FEDORA-2022-7c8b29195f\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"], \"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\"}]}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2022-24790\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-23T15:50:02.994180Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-23T15:50:05.546Z\"}}]}",
"cveMetadata": "{\"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"assignerShortName\": \"GitHub_M\", \"cveId\": \"CVE-2022-24790\", \"datePublished\": \"2022-03-30T21:50:09.000Z\", \"dateReserved\": \"2022-02-10T00:00:00.000Z\", \"dateUpdated\": \"2025-04-23T18:43:11.083Z\", \"state\": \"PUBLISHED\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
BDU:2024-07776
Vulnerability from fstec - Published: 30.03.2022
VLAI
Title
Уязвимость HTTP-сервера для Ruby/Rack приложений Puma, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость HTTP-сервера для Ruby/Rack приложений Puma связана с недостатками обработки HTTP-запросов. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании
Severity
Vendor
Сообщество свободного программного обеспечения, Canonical Ltd., Fedora Project, ООО «Ред Софт», АО "НППКТ"
Software Name
Debian GNU/Linux, Ubuntu, Fedora, РЕД ОС (запись в едином реестре российских программ №3751), ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913), Puma
Software Version
10 (Debian GNU/Linux), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 35 (Fedora), 7.3 (РЕД ОС), 36 (Fedora), 22.04 LTS (Ubuntu), 37 (Fedora), до 2.6 (ОСОН ОСнова Оnyx), до 4.3.12 (Puma), от 5.0.0 до 5.6.4 (Puma)
Possible Mitigations
Использование рекомендаций:
Для Puma:
https://security.gentoo.org/glsa/202208-28
https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5
Для РедоС:
http://repo.red-soft.ru/redos/7.3c/x86_64/updates/
Для Debian GNU/Linux:
https://security-tracker.debian.org/tracker/CVE-2022-24790
Для Ubuntu:
https://ubuntu.com/security/CVE-2022-24790
Для Fedora:
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/
Для ОСОН ОСнова Оnyx: Обновление программного обеспечения puma до версии 3.12.0-2+deb10u3
Reference
https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5
https://redos.red-soft.ru/support/secure/
https://security.gentoo.org/glsa/202208-28
https://security-tracker.debian.org/tracker/CVE-2022-24790
https://ubuntu.com/security/CVE-2022-24790
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/
https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.6/
CWE
CWE-444
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:C/A:N",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, Canonical Ltd., Fedora Project, \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\"",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "10 (Debian GNU/Linux), 20.04 LTS (Ubuntu), 11 (Debian GNU/Linux), 12 (Debian GNU/Linux), 35 (Fedora), 7.3 (\u0420\u0415\u0414 \u041e\u0421), 36 (Fedora), 22.04 LTS (Ubuntu), 37 (Fedora), \u0434\u043e 2.6 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx), \u0434\u043e 4.3.12 (Puma), \u043e\u0442 5.0.0 \u0434\u043e 5.6.4 (Puma)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Puma:\nhttps://security.gentoo.org/glsa/202208-28\nhttps://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u043e\u0421: \nhttp://repo.red-soft.ru/redos/7.3c/x86_64/updates/\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2022-24790\n\n\u0414\u043b\u044f Ubuntu:\nhttps://ubuntu.com/security/CVE-2022-24790\n\n\u0414\u043b\u044f Fedora:\nhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\nhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\nhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\n\n\u0414\u043b\u044f \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx: \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f puma \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 3.12.0-2+deb10u3",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "30.03.2022",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "06.11.2024",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "04.10.2024",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-07776",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2022-24790",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Debian GNU/Linux, Ubuntu, Fedora, \u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913), Puma",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , Canonical Ltd. Ubuntu 20.04 LTS , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 12 , Fedora Project Fedora 35 , \u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Fedora Project Fedora 36 , Canonical Ltd. Ubuntu 22.04 LTS , Fedora Project Fedora 37 , \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.6 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c HTTP-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0434\u043b\u044f Ruby/Rack \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Puma, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u043e\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c\u043d\u0430\u044f \u0438\u043d\u0442\u0435\u0440\u043f\u0440\u0435\u0442\u0430\u0446\u0438\u044f HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 (\u0027\u041a\u043e\u043d\u0442\u0440\u0430\u0431\u0430\u043d\u0434\u0430 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432\u0027) (CWE-444)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c HTTP-\u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0434\u043b\u044f Ruby/Rack \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Puma \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041f\u043e\u0434\u043c\u0435\u043d\u0430 \u043f\u0440\u0438 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5\nhttps://redos.red-soft.ru/support/secure/\nhttps://security.gentoo.org/glsa/202208-28\nhttps://security-tracker.debian.org/tracker/CVE-2022-24790\nhttps://ubuntu.com/security/CVE-2022-24790\nhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/\nhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/\nhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.6/",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-444",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,4)\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,1)"
}
FKIE_CVE-2022-24790
Vulnerability from fkie_nvd - Published: 2022-03-30 22:15 - Updated: 2024-11-21 06:51
Severity
9.1 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Summary
Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| puma | puma | * | |
| puma | puma | * | |
| debian | debian_linux | 10.0 | |
| debian | debian_linux | 11.0 | |
| fedoraproject | fedora | 35 | |
| fedoraproject | fedora | 36 | |
| fedoraproject | fedora | 37 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*",
"matchCriteriaId": "345E03BE-2C86-4772-AA09-236D912EC708",
"versionEndExcluding": "4.3.12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*",
"matchCriteriaId": "C0FF1252-8D38-4832-B0B0-CAEDB2E13F0B",
"versionEndExcluding": "5.6.4",
"versionStartIncluding": "5.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
"matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
"matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard."
},
{
"lang": "es",
"value": "Puma es un servidor HTTP versi\u00f3n 1.1 simple, r\u00e1pido, multihilo y paralelo para aplicaciones Ruby/Rack. Cuando es usado Puma detr\u00e1s de un proxy que no comprueba apropiadamente que la petici\u00f3n HTTP entrante coincide con el est\u00e1ndar RFC7230, Puma y el proxy del frontend pueden no estar de acuerdo en d\u00f3nde empieza y termina una petici\u00f3n. Esto permitir\u00eda contrabandear peticiones por medio del proxy del front-end a Puma. La vulnerabilidad ha sido corregida en versiones 5.6.4 y 4.3.12. Se recomienda a usuarios actualizar lo antes posible. Mitigaci\u00f3n: cuando despliegue un proxy frente a Puma, habilite todas las funciones para asegurarse de que la petici\u00f3n se ajusta al est\u00e1ndar RFC7230"
}
],
"id": "CVE-2022-24790",
"lastModified": "2024-11-21T06:51:06.130",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.2,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-03-30T22:15:08.500",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"source": "security-advisories@github.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"source": "security-advisories@github.com",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/"
},
{
"source": "security-advisories@github.com",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/"
},
{
"source": "security-advisories@github.com",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2022/dsa-5146"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2022/dsa-5146"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-444"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
GHSA-H99W-9Q5R-GJQ9
Vulnerability from github – Published: 2022-03-30 21:48 – Updated: 2022-08-16 19:37
VLAI
Summary
Puma vulnerable to HTTP Request Smuggling
Details
When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma.
The following vulnerabilities are addressed by this advisory:
- Lenient parsing of Transfer-Encoding headers, when unsupported encodings should be rejected and the final encoding must be chunked.
- Lenient parsing of malformed Content-Length headers and chunk sizes, when only digits and hex digits should be allowed.
- Lenient parsing of duplicate Content-Length headers, when they should be rejected.
- Lenient parsing of the ending of chunked segments, when they should end with \r\n.
The vulnerability has been fixed in 5.6.4 and 4.3.12. When deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.
These proxy servers are known to have "good" behavior re: this standard and upgrading Puma may not be necessary. Users are encouraged to validate for themselves.
- Nginx (latest)
- Apache (latest)
- Haproxy 2.5+
- Caddy (latest)
- Traefik (latest)
Severity
9.1 (Critical)
{
"affected": [
{
"package": {
"ecosystem": "RubyGems",
"name": "puma"
},
"ranges": [
{
"events": [
{
"introduced": "5.0.0"
},
{
"fixed": "5.6.4"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "RubyGems",
"name": "puma"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.3.12"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2022-24790"
],
"database_specific": {
"cwe_ids": [
"CWE-444"
],
"github_reviewed": true,
"github_reviewed_at": "2022-03-30T21:48:50Z",
"nvd_published_at": "2022-03-30T22:15:00Z",
"severity": "CRITICAL"
},
"details": "When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma.\n\nThe following vulnerabilities are addressed by this advisory:\n- Lenient parsing of `Transfer-Encoding` headers, when unsupported encodings should be rejected and the final encoding must be `chunked`.\n- Lenient parsing of malformed `Content-Length` headers and chunk sizes, when only digits and hex digits should be allowed.\n- Lenient parsing of duplicate `Content-Length` headers, when they should be rejected.\n- Lenient parsing of the ending of chunked segments, when they should end with `\\r\\n`.\n\nThe vulnerability has been fixed in 5.6.4 and 4.3.12. When deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard. \n\nThese proxy servers are known to have \"good\" behavior re: this standard and upgrading Puma may not be necessary. Users are encouraged to validate for themselves.\n\n- Nginx (latest)\n- Apache (latest)\n- Haproxy 2.5+\n- Caddy (latest)\n- Traefik (latest)",
"id": "GHSA-h99w-9q5r-gjq9",
"modified": "2022-08-16T19:37:40Z",
"published": "2022-03-30T21:48:50Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24790"
},
{
"type": "WEB",
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"type": "PACKAGE",
"url": "https://github.com/puma/puma"
},
{
"type": "WEB",
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/puma/CVE-2022-24790.yml"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G"
},
{
"type": "WEB",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB"
},
{
"type": "WEB",
"url": "https://portswigger.net/web-security/request-smuggling"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2022/dsa-5146"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"type": "CVSS_V3"
}
],
"summary": "Puma vulnerable to HTTP Request Smuggling"
}
GSD-2022-24790
Vulnerability from gsd - Updated: 2022-03-30 00:00Details
### Impact
When using Puma behind a proxy that does not properly validate that the
incoming HTTP request matches the RFC7230 standard, Puma and the frontend
proxy may disagree on where a request starts and ends. This would allow
requests to be smuggled via the front-end proxy to Puma.
The following vulnerabilities are addressed by this advisory:
- Lenient parsing of `Transfer-Encoding` headers, when unsupported encodings
should be rejected and the final encoding must be `chunked`.
- Lenient parsing of malformed `Content-Length` headers and chunk sizes, when
only digits and hex digits should be allowed.
- Lenient parsing of duplicate `Content-Length` headers, when they should be
rejected.
- Lenient parsing of the ending of chunked segments, when they should end
with `\r\n`.
### Patches
The vulnerability has been fixed in 5.6.4 and 4.3.12.
### Workarounds
When deploying a proxy in front of Puma, turning on any and all functionality
to make sure that the request matches the RFC7230 standard.
These proxy servers are known to have "good" behavior re: this standard and
upgrading Puma may not be necessary. Users are encouraged to validate for
themselves.
- Nginx (latest)
- Apache (latest)
- Haproxy 2.5+
- Caddy (latest)
- Traefik (latest)
### References
[HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-24790",
"description": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.",
"id": "GSD-2022-24790",
"references": [
"https://www.suse.com/security/cve/CVE-2022-24790.html",
"https://security.archlinux.org/CVE-2022-24790",
"https://www.debian.org/security/2022/dsa-5146",
"https://access.redhat.com/errata/RHSA-2022:8532"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"affected": [
{
"package": {
"ecosystem": "RubyGems",
"name": "puma",
"purl": "pkg:gem/puma"
}
}
],
"aliases": [
"CVE-2022-24790",
"GHSA-h99w-9q5r-gjq9"
],
"details": "### Impact\n\nWhen using Puma behind a proxy that does not properly validate that the\nincoming HTTP request matches the RFC7230 standard, Puma and the frontend\nproxy may disagree on where a request starts and ends. This would allow\nrequests to be smuggled via the front-end proxy to Puma.\n\nThe following vulnerabilities are addressed by this advisory:\n- Lenient parsing of `Transfer-Encoding` headers, when unsupported encodings\n should be rejected and the final encoding must be `chunked`.\n- Lenient parsing of malformed `Content-Length` headers and chunk sizes, when\n only digits and hex digits should be allowed.\n- Lenient parsing of duplicate `Content-Length` headers, when they should be\n rejected.\n- Lenient parsing of the ending of chunked segments, when they should end\n with `\\r\\n`.\n\n### Patches\n\nThe vulnerability has been fixed in 5.6.4 and 4.3.12.\n\n### Workarounds\n\nWhen deploying a proxy in front of Puma, turning on any and all functionality\nto make sure that the request matches the RFC7230 standard.\n\nThese proxy servers are known to have \"good\" behavior re: this standard and\nupgrading Puma may not be necessary. Users are encouraged to validate for\nthemselves.\n\n- Nginx (latest)\n- Apache (latest)\n- Haproxy 2.5+\n- Caddy (latest)\n- Traefik (latest)\n\n### References\n\n[HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)\n",
"id": "GSD-2022-24790",
"modified": "2022-03-30T00:00:00.000Z",
"published": "2022-03-30T00:00:00.000Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"type": "WEB",
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": 9.1,
"type": "CVSS_V3"
}
],
"summary": "HTTP Request Smuggling in puma"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2022-24790",
"STATE": "PUBLIC",
"TITLE": "HTTP Request Smuggling in puma"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "puma",
"version": {
"version_data": [
{
"version_value": "\u003c 4.3.12"
},
{
"version_value": "\u003e= 5.0.0, \u003c 5.6.4"
}
]
}
}
]
},
"vendor_name": "puma"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard."
}
]
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-444: Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9",
"refsource": "CONFIRM",
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"name": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5",
"refsource": "MISC",
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"name": "DSA-5146",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2022/dsa-5146"
},
{
"name": "GLSA-202208-28",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"name": "[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"name": "FEDORA-2022-de968d1b6c",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/"
},
{
"name": "FEDORA-2022-52d0032596",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/"
},
{
"name": "FEDORA-2022-7c8b29195f",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/"
}
]
},
"source": {
"advisory": "GHSA-h99w-9q5r-gjq9",
"discovery": "UNKNOWN"
}
},
"github.com/rubysec/ruby-advisory-db": {
"cve": "2022-24790",
"cvss_v3": 9.1,
"date": "2022-03-30",
"description": "### Impact\n\nWhen using Puma behind a proxy that does not properly validate that the\nincoming HTTP request matches the RFC7230 standard, Puma and the frontend\nproxy may disagree on where a request starts and ends. This would allow\nrequests to be smuggled via the front-end proxy to Puma.\n\nThe following vulnerabilities are addressed by this advisory:\n- Lenient parsing of `Transfer-Encoding` headers, when unsupported encodings\n should be rejected and the final encoding must be `chunked`.\n- Lenient parsing of malformed `Content-Length` headers and chunk sizes, when\n only digits and hex digits should be allowed.\n- Lenient parsing of duplicate `Content-Length` headers, when they should be\n rejected.\n- Lenient parsing of the ending of chunked segments, when they should end\n with `\\r\\n`.\n\n### Patches\n\nThe vulnerability has been fixed in 5.6.4 and 4.3.12.\n\n### Workarounds\n\nWhen deploying a proxy in front of Puma, turning on any and all functionality\nto make sure that the request matches the RFC7230 standard.\n\nThese proxy servers are known to have \"good\" behavior re: this standard and\nupgrading Puma may not be necessary. Users are encouraged to validate for\nthemselves.\n\n- Nginx (latest)\n- Apache (latest)\n- Haproxy 2.5+\n- Caddy (latest)\n- Traefik (latest)\n\n### References\n\n[HTTP Request Smuggling](https://portswigger.net/web-security/request-smuggling)\n",
"gem": "puma",
"ghsa": "h99w-9q5r-gjq9",
"patched_versions": [
"~\u003e 4.3.12",
"\u003e= 5.6.4"
],
"related": {
"url": [
"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
]
},
"title": "HTTP Request Smuggling in puma",
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003c4.3.12||\u003e=5.0.0 \u003c5.6.4",
"affected_versions": "All versions before 4.3.12, all versions starting from 5.0.0 before 5.6.4",
"cvss_v2": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-444",
"CWE-937"
],
"date": "2022-10-12",
"description": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.",
"fixed_versions": [],
"identifier": "CVE-2022-24790",
"identifiers": [
"CVE-2022-24790",
"GHSA-h99w-9q5r-gjq9"
],
"not_impacted": "",
"package_slug": "gem/gitlab-puma",
"pubdate": "2022-03-30",
"solution": "Unfortunately, there is no solution available yet.",
"title": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2022-24790",
"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5",
"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
],
"uuid": "d511407c-e0b0-45e0-8d87-5ca4f9ae7123"
},
{
"affected_range": "\u003c4.3.12||\u003e=5.0.0 \u003c5.6.4",
"affected_versions": "All versions before 4.3.12, all versions starting from 5.0.0 before 5.6.4",
"cvss_v2": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"cwe_ids": [
"CWE-1035",
"CWE-444",
"CWE-937"
],
"date": "2022-10-12",
"description": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.",
"fixed_versions": [
"4.3.12",
"5.6.4"
],
"identifier": "CVE-2022-24790",
"identifiers": [
"CVE-2022-24790",
"GHSA-h99w-9q5r-gjq9"
],
"not_impacted": "All versions starting from 4.3.12 before 5.0.0, all versions starting from 5.6.4",
"package_slug": "gem/puma",
"pubdate": "2022-03-30",
"solution": "Upgrade to versions 4.3.12, 5.6.4 or above.",
"title": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request Smuggling\u0027)",
"urls": [
"https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9",
"https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5",
"https://github.com/advisories/GHSA-h99w-9q5r-gjq9"
],
"uuid": "e3fa2ba1-01ed-4de4-8bc1-8761adf07836"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*",
"cpe_name": [],
"versionEndExcluding": "4.3.12",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:puma:puma:*:*:*:*:*:ruby:*:*",
"cpe_name": [],
"versionEndExcluding": "5.6.4",
"versionStartIncluding": "5.0.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2022-24790"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-444"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/puma/puma/commit/5bb7d202e24dec00a898dca4aa11db391d7787a5"
},
{
"name": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/puma/puma/security/advisories/GHSA-h99w-9q5r-gjq9"
},
{
"name": "DSA-5146",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2022/dsa-5146"
},
{
"name": "GLSA-202208-28",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202208-28"
},
{
"name": "[debian-lts-announce] 20220827 [SECURITY] [DLA 3083-1] puma security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/08/msg00015.html"
},
{
"name": "FEDORA-2022-de968d1b6c",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TUBFJ44NCKJ34LECZRAP4N5VL6USJSIB/"
},
{
"name": "FEDORA-2022-52d0032596",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7NESIBFCNSR3XH7LXDPKVMSUBNUB43G/"
},
{
"name": "FEDORA-2022-7c8b29195f",
"refsource": "FEDORA",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F6YWGIIKL7KKTS3ZOAYMYPC7D6WQ5OA5/"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2022-10-12T13:15Z",
"publishedDate": "2022-03-30T22:15Z"
}
}
}
OPENSUSE-SU-2024:12032-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
ruby3.1-rubygem-puma-4-4.3.12-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: ruby3.1-rubygem-puma-4-4.3.12-1.1 on GA media
Description of the patch: These are all security issues fixed in the ruby3.1-rubygem-puma-4-4.3.12-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-12032
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.1-rubygem-puma-4-4.3.12-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.1-rubygem-puma-4-4.3.12-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12032",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12032-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-24790 page",
"url": "https://www.suse.com/security/cve/CVE-2022-24790/"
}
],
"title": "ruby3.1-rubygem-puma-4-4.3.12-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12032-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64",
"product": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64",
"product_id": "ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le",
"product": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le",
"product_id": "ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x",
"product": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x",
"product_id": "ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64",
"product": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64",
"product_id": "ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64"
},
"product_reference": "ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le"
},
"product_reference": "ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x"
},
"product_reference": "ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64"
},
"product_reference": "ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-24790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-24790"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-24790",
"url": "https://www.suse.com/security/cve/CVE-2022-24790"
},
{
"category": "external",
"summary": "SUSE Bug 1197818 for CVE-2022-24790",
"url": "https://bugzilla.suse.com/1197818"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-4-4.3.12-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-24790"
}
]
}
OPENSUSE-SU-2024:12592-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
ruby3.1-rubygem-puma-5-5.6.5-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: ruby3.1-rubygem-puma-5-5.6.5-1.1 on GA media
Description of the patch: These are all security issues fixed in the ruby3.1-rubygem-puma-5-5.6.5-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-12592
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.1-rubygem-puma-5-5.6.5-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.1-rubygem-puma-5-5.6.5-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12592",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12592-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16770 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-11076 page",
"url": "https://www.suse.com/security/cve/CVE-2020-11076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29509 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-41136 page",
"url": "https://www.suse.com/security/cve/CVE-2021-41136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-24790 page",
"url": "https://www.suse.com/security/cve/CVE-2022-24790/"
}
],
"title": "ruby3.1-rubygem-puma-5-5.6.5-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12592-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"product": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"product_id": "ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"product": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"product_id": "ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"product": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"product_id": "ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64",
"product": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64",
"product_id": "ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64"
},
"product_reference": "ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le"
},
"product_reference": "ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x"
},
"product_reference": "ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
},
"product_reference": "ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16770"
}
],
"notes": [
{
"category": "general",
"text": "In Puma before versions 3.12.2 and 4.3.1, a poorly-behaved client could use keepalive requests to monopolize Puma\u0027s reactor and create a denial of service attack. If more keepalive connections to Puma are opened than there are threads available, additional connections will wait permanently if the attacker sends requests frequently enough. This vulnerability is patched in Puma 4.3.1 and 3.12.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16770",
"url": "https://www.suse.com/security/cve/CVE-2019-16770"
},
{
"category": "external",
"summary": "SUSE Bug 1158675 for CVE-2019-16770",
"url": "https://bugzilla.suse.com/1158675"
},
{
"category": "external",
"summary": "SUSE Bug 1188527 for CVE-2019-16770",
"url": "https://bugzilla.suse.com/1188527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-16770"
},
{
"cve": "CVE-2020-11076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-11076"
}
],
"notes": [
{
"category": "general",
"text": "In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle an HTTP response, by using an invalid transfer-encoding header. The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-11076",
"url": "https://www.suse.com/security/cve/CVE-2020-11076"
},
{
"category": "external",
"summary": "SUSE Bug 1172175 for CVE-2020-11076",
"url": "https://bugzilla.suse.com/1172175"
},
{
"category": "external",
"summary": "SUSE Bug 1172176 for CVE-2020-11076",
"url": "https://bugzilla.suse.com/1172176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-11076"
},
{
"cve": "CVE-2021-29509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-29509"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a concurrent HTTP 1.1 server for Ruby/Rack applications. The fix for CVE-2019-16770 was incomplete. The original fix only protected existing connections that had already been accepted from having their requests starved by greedy persistent-connections saturating all threads in the same process. However, new connections may still be starved by greedy persistent-connections saturating all threads in all processes in the cluster. A `puma` server which received more concurrent `keep-alive` connections than the server had threads in its threadpool would service only a subset of connections, denying service to the unserved connections. This problem has been fixed in `puma` 4.3.8 and 5.3.1. Setting `queue_requests false` also fixes the issue. This is not advised when using `puma` without a reverse proxy, such as `nginx` or `apache`, because you will open yourself to slow client attacks (e.g. slowloris). The fix is very small and a git patch is available for those using unsupported versions of Puma.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-29509",
"url": "https://www.suse.com/security/cve/CVE-2021-29509"
},
{
"category": "external",
"summary": "SUSE Bug 1188527 for CVE-2021-29509",
"url": "https://bugzilla.suse.com/1188527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-29509"
},
{
"cve": "CVE-2021-41136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-41136"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a HTTP 1.1 server for Ruby/Rack applications. Prior to versions 5.5.1 and 4.3.9, using `puma` with a proxy which forwards HTTP header values which contain the LF character could allow HTTP request smugggling. A client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. The only proxy which has this behavior, as far as the Puma team is aware of, is Apache Traffic Server. If the proxy uses persistent connections and the client adds another request in via HTTP pipelining, the proxy may mistake it as the first request\u0027s body. Puma, however, would see it as two requests, and when processing the second request, send back a response that the proxy does not expect. If the proxy has reused the persistent connection to Puma to send another request for a different client, the second response from the first client will be sent to the second client. This vulnerability was patched in Puma 5.5.1 and 4.3.9. As a workaround, do not use Apache Traffic Server with `puma`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-41136",
"url": "https://www.suse.com/security/cve/CVE-2021-41136"
},
{
"category": "external",
"summary": "SUSE Bug 1191681 for CVE-2021-41136",
"url": "https://bugzilla.suse.com/1191681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2021-41136"
},
{
"cve": "CVE-2022-24790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-24790"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-24790",
"url": "https://www.suse.com/security/cve/CVE-2022-24790"
},
{
"category": "external",
"summary": "SUSE Bug 1197818 for CVE-2022-24790",
"url": "https://bugzilla.suse.com/1197818"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-puma-5-5.6.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-24790"
}
]
}
OPENSUSE-SU-2024:13166-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
ruby3.2-rubygem-puma-5-5.6.5-1.7 on GA media
Severity
Moderate
Notes
Title of the patch: ruby3.2-rubygem-puma-5-5.6.5-1.7 on GA media
Description of the patch: These are all security issues fixed in the ruby3.2-rubygem-puma-5-5.6.5-1.7 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-13166
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.2-rubygem-puma-5-5.6.5-1.7 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.2-rubygem-puma-5-5.6.5-1.7 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-13166",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13166-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16770 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-11076 page",
"url": "https://www.suse.com/security/cve/CVE-2020-11076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29509 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-41136 page",
"url": "https://www.suse.com/security/cve/CVE-2021-41136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-24790 page",
"url": "https://www.suse.com/security/cve/CVE-2022-24790/"
}
],
"title": "ruby3.2-rubygem-puma-5-5.6.5-1.7 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:13166-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"product": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"product_id": "ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"product": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"product_id": "ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"product": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"product_id": "ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64",
"product": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64",
"product_id": "ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64"
},
"product_reference": "ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le"
},
"product_reference": "ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x"
},
"product_reference": "ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
},
"product_reference": "ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16770"
}
],
"notes": [
{
"category": "general",
"text": "In Puma before versions 3.12.2 and 4.3.1, a poorly-behaved client could use keepalive requests to monopolize Puma\u0027s reactor and create a denial of service attack. If more keepalive connections to Puma are opened than there are threads available, additional connections will wait permanently if the attacker sends requests frequently enough. This vulnerability is patched in Puma 4.3.1 and 3.12.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16770",
"url": "https://www.suse.com/security/cve/CVE-2019-16770"
},
{
"category": "external",
"summary": "SUSE Bug 1158675 for CVE-2019-16770",
"url": "https://bugzilla.suse.com/1158675"
},
{
"category": "external",
"summary": "SUSE Bug 1188527 for CVE-2019-16770",
"url": "https://bugzilla.suse.com/1188527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-16770"
},
{
"cve": "CVE-2020-11076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-11076"
}
],
"notes": [
{
"category": "general",
"text": "In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle an HTTP response, by using an invalid transfer-encoding header. The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-11076",
"url": "https://www.suse.com/security/cve/CVE-2020-11076"
},
{
"category": "external",
"summary": "SUSE Bug 1172175 for CVE-2020-11076",
"url": "https://bugzilla.suse.com/1172175"
},
{
"category": "external",
"summary": "SUSE Bug 1172176 for CVE-2020-11076",
"url": "https://bugzilla.suse.com/1172176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-11076"
},
{
"cve": "CVE-2021-29509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-29509"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a concurrent HTTP 1.1 server for Ruby/Rack applications. The fix for CVE-2019-16770 was incomplete. The original fix only protected existing connections that had already been accepted from having their requests starved by greedy persistent-connections saturating all threads in the same process. However, new connections may still be starved by greedy persistent-connections saturating all threads in all processes in the cluster. A `puma` server which received more concurrent `keep-alive` connections than the server had threads in its threadpool would service only a subset of connections, denying service to the unserved connections. This problem has been fixed in `puma` 4.3.8 and 5.3.1. Setting `queue_requests false` also fixes the issue. This is not advised when using `puma` without a reverse proxy, such as `nginx` or `apache`, because you will open yourself to slow client attacks (e.g. slowloris). The fix is very small and a git patch is available for those using unsupported versions of Puma.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-29509",
"url": "https://www.suse.com/security/cve/CVE-2021-29509"
},
{
"category": "external",
"summary": "SUSE Bug 1188527 for CVE-2021-29509",
"url": "https://bugzilla.suse.com/1188527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-29509"
},
{
"cve": "CVE-2021-41136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-41136"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a HTTP 1.1 server for Ruby/Rack applications. Prior to versions 5.5.1 and 4.3.9, using `puma` with a proxy which forwards HTTP header values which contain the LF character could allow HTTP request smugggling. A client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. The only proxy which has this behavior, as far as the Puma team is aware of, is Apache Traffic Server. If the proxy uses persistent connections and the client adds another request in via HTTP pipelining, the proxy may mistake it as the first request\u0027s body. Puma, however, would see it as two requests, and when processing the second request, send back a response that the proxy does not expect. If the proxy has reused the persistent connection to Puma to send another request for a different client, the second response from the first client will be sent to the second client. This vulnerability was patched in Puma 5.5.1 and 4.3.9. As a workaround, do not use Apache Traffic Server with `puma`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-41136",
"url": "https://www.suse.com/security/cve/CVE-2021-41136"
},
{
"category": "external",
"summary": "SUSE Bug 1191681 for CVE-2021-41136",
"url": "https://bugzilla.suse.com/1191681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2021-41136"
},
{
"cve": "CVE-2022-24790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-24790"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-24790",
"url": "https://www.suse.com/security/cve/CVE-2022-24790"
},
{
"category": "external",
"summary": "SUSE Bug 1197818 for CVE-2022-24790",
"url": "https://bugzilla.suse.com/1197818"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-puma-5-5.6.5-1.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-24790"
}
]
}
OPENSUSE-SU-2024:13721-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
ruby3.3-rubygem-puma-5-5.6.8-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: ruby3.3-rubygem-puma-5-5.6.8-1.1 on GA media
Description of the patch: These are all security issues fixed in the ruby3.3-rubygem-puma-5-5.6.8-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-13721
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.3-rubygem-puma-5-5.6.8-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.3-rubygem-puma-5-5.6.8-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-13721",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13721-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16770 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16770/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-11076 page",
"url": "https://www.suse.com/security/cve/CVE-2020-11076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-29509 page",
"url": "https://www.suse.com/security/cve/CVE-2021-29509/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-41136 page",
"url": "https://www.suse.com/security/cve/CVE-2021-41136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-24790 page",
"url": "https://www.suse.com/security/cve/CVE-2022-24790/"
}
],
"title": "ruby3.3-rubygem-puma-5-5.6.8-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:13721-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"product": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"product_id": "ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"product": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"product_id": "ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"product": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"product_id": "ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64",
"product": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64",
"product_id": "ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64"
},
"product_reference": "ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le"
},
"product_reference": "ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x"
},
"product_reference": "ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
},
"product_reference": "ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-16770",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16770"
}
],
"notes": [
{
"category": "general",
"text": "In Puma before versions 3.12.2 and 4.3.1, a poorly-behaved client could use keepalive requests to monopolize Puma\u0027s reactor and create a denial of service attack. If more keepalive connections to Puma are opened than there are threads available, additional connections will wait permanently if the attacker sends requests frequently enough. This vulnerability is patched in Puma 4.3.1 and 3.12.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16770",
"url": "https://www.suse.com/security/cve/CVE-2019-16770"
},
{
"category": "external",
"summary": "SUSE Bug 1158675 for CVE-2019-16770",
"url": "https://bugzilla.suse.com/1158675"
},
{
"category": "external",
"summary": "SUSE Bug 1188527 for CVE-2019-16770",
"url": "https://bugzilla.suse.com/1188527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-16770"
},
{
"cve": "CVE-2020-11076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-11076"
}
],
"notes": [
{
"category": "general",
"text": "In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle an HTTP response, by using an invalid transfer-encoding header. The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-11076",
"url": "https://www.suse.com/security/cve/CVE-2020-11076"
},
{
"category": "external",
"summary": "SUSE Bug 1172175 for CVE-2020-11076",
"url": "https://bugzilla.suse.com/1172175"
},
{
"category": "external",
"summary": "SUSE Bug 1172176 for CVE-2020-11076",
"url": "https://bugzilla.suse.com/1172176"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2020-11076"
},
{
"cve": "CVE-2021-29509",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-29509"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a concurrent HTTP 1.1 server for Ruby/Rack applications. The fix for CVE-2019-16770 was incomplete. The original fix only protected existing connections that had already been accepted from having their requests starved by greedy persistent-connections saturating all threads in the same process. However, new connections may still be starved by greedy persistent-connections saturating all threads in all processes in the cluster. A `puma` server which received more concurrent `keep-alive` connections than the server had threads in its threadpool would service only a subset of connections, denying service to the unserved connections. This problem has been fixed in `puma` 4.3.8 and 5.3.1. Setting `queue_requests false` also fixes the issue. This is not advised when using `puma` without a reverse proxy, such as `nginx` or `apache`, because you will open yourself to slow client attacks (e.g. slowloris). The fix is very small and a git patch is available for those using unsupported versions of Puma.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-29509",
"url": "https://www.suse.com/security/cve/CVE-2021-29509"
},
{
"category": "external",
"summary": "SUSE Bug 1188527 for CVE-2021-29509",
"url": "https://bugzilla.suse.com/1188527"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-29509"
},
{
"cve": "CVE-2021-41136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-41136"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a HTTP 1.1 server for Ruby/Rack applications. Prior to versions 5.5.1 and 4.3.9, using `puma` with a proxy which forwards HTTP header values which contain the LF character could allow HTTP request smugggling. A client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. The only proxy which has this behavior, as far as the Puma team is aware of, is Apache Traffic Server. If the proxy uses persistent connections and the client adds another request in via HTTP pipelining, the proxy may mistake it as the first request\u0027s body. Puma, however, would see it as two requests, and when processing the second request, send back a response that the proxy does not expect. If the proxy has reused the persistent connection to Puma to send another request for a different client, the second response from the first client will be sent to the second client. This vulnerability was patched in Puma 5.5.1 and 4.3.9. As a workaround, do not use Apache Traffic Server with `puma`.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-41136",
"url": "https://www.suse.com/security/cve/CVE-2021-41136"
},
{
"category": "external",
"summary": "SUSE Bug 1191681 for CVE-2021-41136",
"url": "https://bugzilla.suse.com/1191681"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2021-41136"
},
{
"cve": "CVE-2022-24790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-24790"
}
],
"notes": [
{
"category": "general",
"text": "Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-24790",
"url": "https://www.suse.com/security/cve/CVE-2022-24790"
},
{
"category": "external",
"summary": "SUSE Bug 1197818 for CVE-2022-24790",
"url": "https://bugzilla.suse.com/1197818"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-puma-5-5.6.8-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2022-24790"
}
]
}
RHSA-2022:8532
Vulnerability from csaf_redhat - Published: 2022-11-17 17:20 - Updated: 2025-11-21 18:35Summary
Red Hat Security Advisory: Satellite 6.9.10 Async Security Update
Severity
Important
Notes
Topic: Updated Satellite 6.9 packages that fix several bugs are now available for Red Hat Satellite.
Details: Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
Security Fix(es):
* tfm-rubygem-puma: http request smuggling vulnerabilities (CVE-2022-24790)
This update fixes the following bugs:
* 2038995: When executing the content migration (pre-upgrade process), there is a PG query created by pulp that will be sitting forever
* 2074099: The errata migration continues to fail with "pymongo.errors.DocumentTooLarge: BSON document too large" error even after upgrading to Satellite 6.9.8
* 2081560: ForeignKeyViolation Error with docker_meta_tags
* 2091438: Use of content.count() in app/models/repository.py seems to hit an error
* 2093829: 'foreman-maintain content migration-stats' command stucks and consume all memory
* 2098221: Pulp 3 migration stats timing is too low for very large deployments
* 2141348: It appears that the egg is downloaded every time
Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A HTTP request smuggling flaw was found in puma. This issue occurs when using puma behind a proxy. Puma does not validate incoming HTTP requests, as per RFC specification, leading to loss of integrity.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64 | — |
Vendor Fix
fix
|
Known not affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src | — | ||
| Unresolved product id: 7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src | — |
Threats
Impact
Important
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated Satellite 6.9 packages that fix several bugs are now available for Red Hat Satellite.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.\n\nSecurity Fix(es):\n* tfm-rubygem-puma: http request smuggling vulnerabilities (CVE-2022-24790)\n\nThis update fixes the following bugs:\n* 2038995: When executing the content migration (pre-upgrade process), there is a PG query created by pulp that will be sitting forever\n* 2074099: The errata migration continues to fail with \"pymongo.errors.DocumentTooLarge: BSON document too large\" error even after upgrading to Satellite 6.9.8\n* 2081560: ForeignKeyViolation Error with docker_meta_tags\n* 2091438: Use of content.count() in app/models/repository.py seems to hit an error\n* 2093829: \u0027foreman-maintain content migration-stats\u0027 command stucks and consume all memory\n* 2098221: Pulp 3 migration stats timing is too low for very large deployments\n* 2141348: It appears that the egg is downloaded every time\n\nUsers of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:8532",
"url": "https://access.redhat.com/errata/RHSA-2022:8532"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2038995",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2038995"
},
{
"category": "external",
"summary": "2071616",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2071616"
},
{
"category": "external",
"summary": "2074099",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074099"
},
{
"category": "external",
"summary": "2081560",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2081560"
},
{
"category": "external",
"summary": "2091438",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091438"
},
{
"category": "external",
"summary": "2093829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2093829"
},
{
"category": "external",
"summary": "2098221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2098221"
},
{
"category": "external",
"summary": "2141348",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2141348"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_8532.json"
}
],
"title": "Red Hat Security Advisory: Satellite 6.9.10 Async Security Update",
"tracking": {
"current_release_date": "2025-11-21T18:35:05+00:00",
"generator": {
"date": "2025-11-21T18:35:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2022:8532",
"initial_release_date": "2022-11-17T17:20:06+00:00",
"revision_history": [
{
"date": "2022-11-17T17:20:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-11-17T17:20:06+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:35:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite Capsule 6.9",
"product": {
"name": "Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.9::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.9",
"product": {
"name": "Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.9::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite 6"
},
{
"branches": [
{
"category": "product_version",
"name": "satellite-0:6.9.10-1.el7sat.src",
"product": {
"name": "satellite-0:6.9.10-1.el7sat.src",
"product_id": "satellite-0:6.9.10-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.9.10-1.el7sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"product": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"product_id": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-puma@4.3.12-1.el7sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"product": {
"name": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"product_id": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pulp_2to3_migration@0.11.13-1.el7pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"product": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"product_id": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-foreman_rh_cloud@3.0.33-1.el7sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"product": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"product_id": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-katello@3.18.1.55-1.el7sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-common-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-common-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-debug-tools@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"product": {
"name": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"product_id": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-pulp-2to3-migration@0.11.13-1.el7pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"product": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"product_id": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-foreman_rh_cloud@3.0.33-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"product": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"product_id": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-katello@3.18.1.55-1.el7sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"product": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"product_id": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-puma@4.3.12-1.el7sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"product": {
"name": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"product_id": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-puma-debuginfo@4.3.12-1.el7sat?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.src as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.src",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-common-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src"
},
"product_reference": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch"
},
"product_reference": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-common-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch"
},
"product_reference": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src"
},
"product_reference": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch"
},
"product_reference": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src"
},
"product_reference": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src"
},
"product_reference": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64 as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64"
},
"product_reference": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64 as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
},
"product_reference": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"relates_to_product_reference": "7Server-Satellite69"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-24790",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2022-04-04T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2071616"
}
],
"notes": [
{
"category": "description",
"text": "A HTTP request smuggling flaw was found in puma. This issue occurs when using puma behind a proxy. Puma does not validate incoming HTTP requests, as per RFC specification, leading to loss of integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "puma-5.6.4: http request smuggling vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
],
"known_not_affected": [
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-24790"
},
{
"category": "external",
"summary": "RHBZ#2071616",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2071616"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24790"
}
],
"release_date": "2022-03-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-17T17:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.9/html/upgrading_and_updating_red_hat_satellite/updating_satellite_server_capsule_server_and_content_hosts",
"product_ids": [
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:8532"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "puma-5.6.4: http request smuggling vulnerabilities"
}
]
}
RHSA-2022_8532
Vulnerability from csaf_redhat - Published: 2022-11-17 17:20 - Updated: 2024-11-22 20:58Summary
Red Hat Security Advisory: Satellite 6.9.10 Async Security Update
Severity
Important
Notes
Topic: Updated Satellite 6.9 packages that fix several bugs are now available for Red Hat Satellite.
Details: Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
Security Fix(es):
* tfm-rubygem-puma: http request smuggling vulnerabilities (CVE-2022-24790)
This update fixes the following bugs:
* 2038995: When executing the content migration (pre-upgrade process), there is a PG query created by pulp that will be sitting forever
* 2074099: The errata migration continues to fail with "pymongo.errors.DocumentTooLarge: BSON document too large" error even after upgrading to Satellite 6.9.8
* 2081560: ForeignKeyViolation Error with docker_meta_tags
* 2091438: Use of content.count() in app/models/repository.py seems to hit an error
* 2093829: 'foreman-maintain content migration-stats' command stucks and consume all memory
* 2098221: Pulp 3 migration stats timing is too low for very large deployments
* 2141348: It appears that the egg is downloaded every time
Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A HTTP request smuggling flaw was found in puma. This issue occurs when using puma behind a proxy. Puma does not validate incoming HTTP requests, as per RFC specification, leading to loss of integrity.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64 | — |
Vendor Fix
fix
|
Known not affected
18 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src | — | ||
| Unresolved product id: 7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch | — | ||
| Unresolved product id: 7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src | — |
Threats
Impact
Important
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated Satellite 6.9 packages that fix several bugs are now available for Red Hat Satellite.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.\n\nSecurity Fix(es):\n* tfm-rubygem-puma: http request smuggling vulnerabilities (CVE-2022-24790)\n\nThis update fixes the following bugs:\n* 2038995: When executing the content migration (pre-upgrade process), there is a PG query created by pulp that will be sitting forever\n* 2074099: The errata migration continues to fail with \"pymongo.errors.DocumentTooLarge: BSON document too large\" error even after upgrading to Satellite 6.9.8\n* 2081560: ForeignKeyViolation Error with docker_meta_tags\n* 2091438: Use of content.count() in app/models/repository.py seems to hit an error\n* 2093829: \u0027foreman-maintain content migration-stats\u0027 command stucks and consume all memory\n* 2098221: Pulp 3 migration stats timing is too low for very large deployments\n* 2141348: It appears that the egg is downloaded every time\n\nUsers of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2022:8532",
"url": "https://access.redhat.com/errata/RHSA-2022:8532"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2038995",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2038995"
},
{
"category": "external",
"summary": "2071616",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2071616"
},
{
"category": "external",
"summary": "2074099",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2074099"
},
{
"category": "external",
"summary": "2081560",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2081560"
},
{
"category": "external",
"summary": "2091438",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2091438"
},
{
"category": "external",
"summary": "2093829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2093829"
},
{
"category": "external",
"summary": "2098221",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2098221"
},
{
"category": "external",
"summary": "2141348",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2141348"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_8532.json"
}
],
"title": "Red Hat Security Advisory: Satellite 6.9.10 Async Security Update",
"tracking": {
"current_release_date": "2024-11-22T20:58:30+00:00",
"generator": {
"date": "2024-11-22T20:58:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2022:8532",
"initial_release_date": "2022-11-17T17:20:06+00:00",
"revision_history": [
{
"date": "2022-11-17T17:20:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2022-11-17T17:20:06+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T20:58:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite Capsule 6.9",
"product": {
"name": "Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.9::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.9",
"product": {
"name": "Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.9::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite 6"
},
{
"branches": [
{
"category": "product_version",
"name": "satellite-0:6.9.10-1.el7sat.src",
"product": {
"name": "satellite-0:6.9.10-1.el7sat.src",
"product_id": "satellite-0:6.9.10-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.9.10-1.el7sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"product": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"product_id": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-puma@4.3.12-1.el7sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"product": {
"name": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"product_id": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pulp_2to3_migration@0.11.13-1.el7pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"product": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"product_id": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-foreman_rh_cloud@3.0.33-1.el7sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"product": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"product_id": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-katello@3.18.1.55-1.el7sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-common-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-common-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-debug-tools@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"product": {
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"product_id": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.9.10-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"product": {
"name": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"product_id": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-pulp-2to3-migration@0.11.13-1.el7pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"product": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"product_id": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-foreman_rh_cloud@3.0.33-1.el7sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"product": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"product_id": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-katello@3.18.1.55-1.el7sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"product": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"product_id": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-puma@4.3.12-1.el7sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"product": {
"name": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"product_id": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tfm-rubygem-puma-debuginfo@4.3.12-1.el7sat?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.src as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.src",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-common-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite Capsule 6.9",
"product_id": "7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Capsule69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src"
},
"product_reference": "python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch"
},
"product_reference": "python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.9.10-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src"
},
"product_reference": "satellite-0:6.9.10-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-capsule-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-cli-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-common-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch"
},
"product_reference": "satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch"
},
"product_reference": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src"
},
"product_reference": "tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch"
},
"product_reference": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src"
},
"product_reference": "tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src"
},
"product_reference": "tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64 as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64"
},
"product_reference": "tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"relates_to_product_reference": "7Server-Satellite69"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64 as a component of Red Hat Satellite 6.9",
"product_id": "7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
},
"product_reference": "tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64",
"relates_to_product_reference": "7Server-Satellite69"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-24790",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2022-04-04T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2071616"
}
],
"notes": [
{
"category": "description",
"text": "A HTTP request smuggling flaw was found in puma. This issue occurs when using puma behind a proxy. Puma does not validate incoming HTTP requests, as per RFC specification, leading to loss of integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "puma-5.6.4: http request smuggling vulnerabilities",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
],
"known_not_affected": [
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Capsule69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Capsule69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:python-pulp_2to3_migration-0:0.11.13-1.el7pc.src",
"7Server-Satellite69:python3-pulp-2to3-migration-0:0.11.13-1.el7pc.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-0:6.9.10-1.el7sat.src",
"7Server-Satellite69:satellite-capsule-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-cli-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-common-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:satellite-debug-tools-0:6.9.10-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-foreman_rh_cloud-0:3.0.33-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.noarch",
"7Server-Satellite69:tfm-rubygem-katello-0:3.18.1.55-1.el7sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-24790"
},
{
"category": "external",
"summary": "RHBZ#2071616",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2071616"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24790"
}
],
"release_date": "2022-03-30T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2022-11-17T17:20:06+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_satellite/6.9/html/upgrading_and_updating_red_hat_satellite/updating_satellite_server_capsule_server_and_content_hosts",
"product_ids": [
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2022:8532"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.src",
"7Server-Satellite69:tfm-rubygem-puma-0:4.3.12-1.el7sat.x86_64",
"7Server-Satellite69:tfm-rubygem-puma-debuginfo-0:4.3.12-1.el7sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "puma-5.6.4: http request smuggling vulnerabilities"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…