CVE-2012-6685
First published: Mon Jan 05 2015(Updated: )
An XML eXternal Entity (XXE) flaw was found in Nokogiri, a Ruby gem for parsing HTML, XML, and SAX. Using external XML entities, a remote attacker could specify a URL in a specially crafted XML that, when parsed, would cause a connection to that URL to be opened. A patch shipped with the 1.5.4 release of Nokogiri provided a "nonet" option to disable external connections. However, local file URLs could still be used to exploit this flaw. The 1.6.4 release of Nokogiri fixed this issue by using libxml2 2.9.0. Additional information is detailed at: <a href="https://github.com/sparklemotion/nokogiri/issues/693#issuecomment-68334768">https://github.com/sparklemotion/nokogiri/issues/693#issuecomment-68334768</a> CVE request and assignment: <a href="http://seclists.org/oss-sec/2015/q1/57">http://seclists.org/oss-sec/2015/q1/57</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/nokogiri | <1.6.4 | 1.6.4 |
| Nokogiri | <1.5.4 | |
| Red Hat CloudForms Management Engine | =5.0 | |
| Red Hat OpenShift | =2.0 | |
| redhat openstack | =4.0 | |
| redhat openstack | =6.0 | |
| redhat openstack foreman | ||
| redhat satellite | =6.0 | |
| Red Hat Subscription Asset Manager | ||
| Red Hat Enterprise MRG | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://github.com/sparklemotion/nokogiri/issues/693#issuecomment-68334768
- http://seclists.org/oss-sec/2015/q1/57
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1178971
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1178972
- https://lists.fedoraproject.org/pipermail/announce/2014-December/003243.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1178970#c2
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1178970#c0
- https://access.redhat.com/security/cve/CVE-2014-0191
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1090976
- https://access.redhat.com/security/updates/classification/
- https://bugzilla.redhat.com/show_bug.cgi?id=1178970
- https://github.com/sparklemotion/nokogiri/issues/693
- https://nokogiri.org/CHANGELOG.html#154-2012-06-12
Frequently Asked Questions
What is the severity of CVE-2012-6685?
CVE-2012-6685 is classified as a medium severity vulnerability that affects Nokogiri due to an XML eXternal Entity (XXE) flaw.
How do I fix CVE-2012-6685?
To fix CVE-2012-6685, you should upgrade Nokogiri to version 1.6.4 or later.
Which versions of Nokogiri are affected by CVE-2012-6685?
CVE-2012-6685 affects Nokogiri versions up to and including 1.5.4.
What types of software are impacted by CVE-2012-6685?
CVE-2012-6685 impacts several software products including Red Hat CloudForms Management Engine 5.0 and Red Hat OpenShift 2.0.
Can CVE-2012-6685 allow remote code execution?
CVE-2012-6685 does not directly lead to remote code execution, but it can allow a remote attacker to open a connection to a URL in a specially crafted XML document.
- agent/first-publish-date
- agent/type
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2012-6685
- agent/software-canonical-lookup
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/nokogiri
- canonical/nokogiri
- vendor/redhat
- canonical/red hat cloudforms management engine
- version/red hat cloudforms management engine/5.0
- canonical/red hat openshift
- version/red hat openshift/2.0
- canonical/redhat openstack
- version/redhat openstack/4.0
- version/redhat openstack/6.0
- canonical/redhat openstack foreman
- canonical/redhat satellite
- version/redhat satellite/6.0
- canonical/red hat subscription asset manager
- canonical/red hat enterprise mrg
- version/red hat enterprise mrg/2.0