CVE-2016-0751
First published: Tue Feb 16 2016(Updated: )
actionpack/lib/action_dispatch/http/mime_type.rb in Action Pack in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta1.1 does not properly restrict use of the MIME type cache, which allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP Accept header.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| rubygems/actionpack | >=4.0.0<=4.1.14.0 | 4.1.14.1 |
| rubygems/actionpack | <=3.2.22.0 | 3.2.22.1 |
| rubygems/actionpack | >=4.2.0<=4.2.5.0 | 4.2.5.1 |
| Ruby on Rails | =4.0.0 | |
| Ruby on Rails | =4.0.0-beta | |
| Ruby on Rails | =4.0.0-rc1 | |
| Ruby on Rails | =4.0.0-rc2 | |
| Ruby on Rails | =4.0.1 | |
| Ruby on Rails | =4.0.1-rc1 | |
| Ruby on Rails | =4.0.1-rc2 | |
| Ruby on Rails | =4.0.1-rc3 | |
| Ruby on Rails | =4.0.1-rc4 | |
| Ruby on Rails | =4.0.2 | |
| Ruby on Rails | =4.0.3 | |
| Ruby on Rails | =4.0.4 | |
| Ruby on Rails | =4.0.5 | |
| Ruby on Rails | =4.0.6 | |
| Ruby on Rails | =4.0.6-rc1 | |
| Ruby on Rails | =4.0.6-rc2 | |
| Ruby on Rails | =4.0.6-rc3 | |
| Ruby on Rails | =4.0.7 | |
| Ruby on Rails | =4.0.8 | |
| Ruby on Rails | =4.0.9 | |
| Ruby on Rails | =4.0.10 | |
| Ruby on Rails | =4.0.10-rc1 | |
| Ruby on Rails | =4.1.0 | |
| Ruby on Rails | =4.1.0-beta1 | |
| Ruby on Rails | =4.1.1 | |
| Ruby on Rails | =4.1.2 | |
| Ruby on Rails | =4.1.2-rc1 | |
| Ruby on Rails | =4.1.2-rc2 | |
| Ruby on Rails | =4.1.2-rc3 | |
| Ruby on Rails | =4.1.3 | |
| Ruby on Rails | =4.1.4 | |
| Ruby on Rails | =4.1.5 | |
| Ruby on Rails | =4.1.6-rc1 | |
| Ruby on Rails | =4.1.7 | |
| Ruby on Rails | =4.1.8 | |
| Ruby on Rails | =4.1.9 | |
| Ruby on Rails | =4.1.10 | |
| Ruby on Rails | =4.1.12 | |
| Ruby on Rails | =4.1.13 | |
| Ruby on Rails | =4.2.0-beta1 | |
| Ruby on Rails | =4.2.0-beta2 | |
| Ruby on Rails | =4.2.0-beta3 | |
| Ruby on Rails | =4.2.0-beta4 | |
| Ruby on Rails | =4.2.0-rc1 | |
| Ruby on Rails | =4.2.0-rc2 | |
| Ruby on Rails | =4.2.0-rc3 | |
| Ruby on Rails | =4.2.1 | |
| Ruby on Rails | =4.2.1-rc1 | |
| Ruby on Rails | =4.2.1-rc2 | |
| Ruby on Rails | =4.2.1-rc3 | |
| Ruby on Rails | =4.2.1-rc4 | |
| Ruby on Rails | =4.2.2 | |
| Ruby on Rails | =4.2.3 | |
| Ruby on Rails | =4.2.3-rc1 | |
| Ruby on Rails | =4.2.4 | |
| Ruby on Rails | =4.2.4-rc1 | |
| Ruby on Rails | =4.2.5 | |
| Ruby on Rails | =4.2.5-rc1 | |
| Ruby on Rails | =4.2.5-rc2 | |
| Ruby on Rails | =5.0.0-beta1 | |
| Ruby on Rails | <=3.2.22 | |
| Ruby on Rails | =4.0.10-rc2 | |
| Ruby on Rails | =4.0.11 | |
| Ruby on Rails | =4.0.11.1 | |
| Ruby on Rails | =4.0.12 | |
| Ruby on Rails | =4.0.13 | |
| Ruby on Rails | =4.0.13-rc1 | |
| Ruby on Rails | =4.1.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178043.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178067.html
- http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html
- http://lists.opensuse.org/opensuse-updates/2016-02/msg00034.html
- http://lists.opensuse.org/opensuse-updates/2016-02/msg00043.html
- http://rhn.redhat.com/errata/RHSA-2016-0296.html
- http://www.debian.org/security/2016/dsa-3464
- http://www.openwall.com/lists/oss-security/2016/01/25/9
- http://www.securityfocus.com/bid/81800
- http://www.securitytracker.com/id/1034816
- https://groups.google.com/forum/message/raw?msg=ruby-security-ann/9oLY_FCzvoc/5CDXbvpYEgAJ
Frequently Asked Questions
What is the severity of CVE-2016-0751?
CVE-2016-0751 is classified as a denial of service vulnerability in affected Ruby on Rails versions.
How do I fix CVE-2016-0751?
To fix CVE-2016-0751, you should upgrade to Action Pack version 5.x, 4.2.5.1, 4.1.14.1, or 3.2.22.1.
Which versions of Ruby on Rails are affected by CVE-2016-0751?
CVE-2016-0751 affects Ruby on Rails versions prior to 3.2.22.1, 4.0.x prior to 4.1.14.1, 4.1.x prior to 4.1.14.1, 4.2.x prior to 4.2.5.1, and 5.x prior to 5.0.0.beta1.1.
What could an attacker do with CVE-2016-0751?
An attacker could exploit CVE-2016-0751 to cause a denial of service condition by manipulating the MIME type cache.
Is upgrading to the latest version sufficient to mitigate CVE-2016-0751?
Yes, upgrading to the recommended versions will effectively mitigate the vulnerability associated with CVE-2016-0751.
- collector/github-advisory
- alias/GHSA-ffpv-c4hm-3x6v
- alias/CVE-2016-0751
- collector/github-advisory-latest
- agent/author
- agent/type
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/first-publish-date
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- package-manager/rubygems
- vendor/rubyonrails
- canonical/ruby on rails
- version/ruby on rails/4.0.0
- version/ruby on rails/4.0.0-beta
- version/ruby on rails/4.0.0-rc1
- version/ruby on rails/4.0.0-rc2
- version/ruby on rails/4.0.1
- version/ruby on rails/4.0.1-rc1
- version/ruby on rails/4.0.1-rc2
- version/ruby on rails/4.0.1-rc3
- version/ruby on rails/4.0.1-rc4
- version/ruby on rails/4.0.2
- version/ruby on rails/4.0.3
- version/ruby on rails/4.0.4
- version/ruby on rails/4.0.5
- version/ruby on rails/4.0.6
- version/ruby on rails/4.0.6-rc1
- version/ruby on rails/4.0.6-rc2
- version/ruby on rails/4.0.6-rc3
- version/ruby on rails/4.0.7
- version/ruby on rails/4.0.8
- version/ruby on rails/4.0.9
- version/ruby on rails/4.0.10
- version/ruby on rails/4.0.10-rc1
- version/ruby on rails/4.1.0
- version/ruby on rails/4.1.0-beta1
- version/ruby on rails/4.1.1
- version/ruby on rails/4.1.2
- version/ruby on rails/4.1.2-rc1
- version/ruby on rails/4.1.2-rc2
- version/ruby on rails/4.1.2-rc3
- version/ruby on rails/4.1.3
- version/ruby on rails/4.1.4
- version/ruby on rails/4.1.5
- version/ruby on rails/4.1.6-rc1
- version/ruby on rails/4.1.7
- version/ruby on rails/4.1.8
- version/ruby on rails/4.1.9
- version/ruby on rails/4.1.10
- version/ruby on rails/4.1.12
- version/ruby on rails/4.1.13
- version/ruby on rails/4.2.0-beta1
- version/ruby on rails/4.2.0-beta2
- version/ruby on rails/4.2.0-beta3
- version/ruby on rails/4.2.0-beta4
- version/ruby on rails/4.2.0-rc1
- version/ruby on rails/4.2.0-rc2
- version/ruby on rails/4.2.0-rc3
- version/ruby on rails/4.2.1
- version/ruby on rails/4.2.1-rc1
- version/ruby on rails/4.2.1-rc2
- version/ruby on rails/4.2.1-rc3
- version/ruby on rails/4.2.1-rc4
- version/ruby on rails/4.2.2
- version/ruby on rails/4.2.3
- version/ruby on rails/4.2.3-rc1
- version/ruby on rails/4.2.4
- version/ruby on rails/4.2.4-rc1
- version/ruby on rails/4.2.5
- version/ruby on rails/4.2.5-rc1
- version/ruby on rails/4.2.5-rc2
- version/ruby on rails/5.0.0-beta1
- version/ruby on rails/3.2.22
- version/ruby on rails/4.0.10-rc2
- version/ruby on rails/4.0.11
- version/ruby on rails/4.0.11.1
- version/ruby on rails/4.0.12
- version/ruby on rails/4.0.13
- version/ruby on rails/4.0.13-rc1
- version/ruby on rails/4.1.11