CVE-2015-4020: Input Validation

First published: Tue Aug 25 2015(Updated: )

RubyGems 2.0.x before 2.0.17, 2.2.x before 2.2.5, and 2.3.x before 2.4.8 does not validate the hostname when fetching gems or making API requests, which allows remote attackers to redirect requests to arbitrary domains via a crafted DNS SRV record with a domain that is suffixed with the original domain name, aka a "DNS hijack attack." NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-3900.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Oracle Solaris	=11.3
Rubygems Rubygems	=2.0.0
Rubygems Rubygems	=2.0.0-preview2
Rubygems Rubygems	=2.0.0-preview2.1
Rubygems Rubygems	=2.0.0-preview2.2
Rubygems Rubygems	=2.0.0-rc1
Rubygems Rubygems	=2.0.0-rc2
Rubygems Rubygems	=2.0.1
Rubygems Rubygems	=2.0.2
Rubygems Rubygems	=2.0.3
Rubygems Rubygems	=2.0.4
Rubygems Rubygems	=2.0.5
Rubygems Rubygems	=2.0.6
Rubygems Rubygems	=2.0.7
Rubygems Rubygems	=2.0.8
Rubygems Rubygems	=2.0.9
Rubygems Rubygems	=2.0.10
Rubygems Rubygems	=2.0.11
Rubygems Rubygems	=2.0.12
Rubygems Rubygems	=2.0.13
Rubygems Rubygems	=2.0.14
Rubygems Rubygems	=2.0.15
Rubygems Rubygems	=2.0.16
Rubygems Rubygems	=2.2.0
Rubygems Rubygems	=2.2.1
Rubygems Rubygems	=2.2.2
Rubygems Rubygems	=2.2.3
Rubygems Rubygems	=2.2.4
Rubygems Rubygems	=2.4.0
Rubygems Rubygems	=2.4.1
Rubygems Rubygems	=2.4.2
Rubygems Rubygems	=2.4.3
Rubygems Rubygems	=2.4.4
Rubygems Rubygems	=2.4.5
Rubygems Rubygems	=2.4.6
Rubygems Rubygems	=2.4.7

Never miss a vulnerability like this again

Reference Links

collector/github-advisory-latest
alias/GHSA-qv62-xfj6-32xm
alias/CVE-2015-4020
collector/github-advisory
collector/nvd-index
collector/nvd-cve
agent/severity
agent/author
agent/event
agent/description
agent/type
agent/first-publish-date
agent/weakness
agent/references
agent/last-modified-date
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
package-manager/rubygems
vendor/oracle
canonical/oracle solaris
version/oracle solaris/11.3
vendor/rubygems
canonical/rubygems rubygems
version/rubygems rubygems/2.0.0
version/rubygems rubygems/2.0.0-preview2
version/rubygems rubygems/2.0.0-preview2.1
version/rubygems rubygems/2.0.0-preview2.2
version/rubygems rubygems/2.0.0-rc1
version/rubygems rubygems/2.0.0-rc2
version/rubygems rubygems/2.0.1
version/rubygems rubygems/2.0.2
version/rubygems rubygems/2.0.3
version/rubygems rubygems/2.0.4
version/rubygems rubygems/2.0.5
version/rubygems rubygems/2.0.6
version/rubygems rubygems/2.0.7
version/rubygems rubygems/2.0.8
version/rubygems rubygems/2.0.9
version/rubygems rubygems/2.0.10
version/rubygems rubygems/2.0.11
version/rubygems rubygems/2.0.12
version/rubygems rubygems/2.0.13
version/rubygems rubygems/2.0.14
version/rubygems rubygems/2.0.15
version/rubygems rubygems/2.0.16
version/rubygems rubygems/2.2.0
version/rubygems rubygems/2.2.1
version/rubygems rubygems/2.2.2
version/rubygems rubygems/2.2.3
version/rubygems rubygems/2.2.4
version/rubygems rubygems/2.4.0
version/rubygems rubygems/2.4.1
version/rubygems rubygems/2.4.2
version/rubygems rubygems/2.4.3
version/rubygems rubygems/2.4.4
version/rubygems rubygems/2.4.5
version/rubygems rubygems/2.4.6
version/rubygems rubygems/2.4.7

CVE-2015-4020: Input Validation

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact