CVE-2018-1000119: CSRF
First published: Fri Jan 12 2018(Updated: )
Sinatra rack-protection versions 1.5.4 and 2.0.0.rc3 and earlier contains a timing attack vulnerability in the CSRF token checking that can result in signatures can be exposed. This attack appear to be exploitable via network connectivity to the ruby application. This vulnerability appears to have been fixed in 1.5.5 and 2.0.0.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| rubygems/rack-protection | >=2.0.0.beta1<=2.0.0.rc3 | 2.0.0 |
| rubygems/rack-protection | <1.5.5 | 1.5.5 |
| Sinatrarb Rack-protection | <1.5.5 | |
| Sinatrarb Rack-protection | =2.0.0-rc1 | |
| Sinatrarb Rack-protection | =2.0.0-rc2 | |
| Sinatrarb Rack-protection | =2.0.0-rc3 | |
| redhat/rack-protection | <2.0.0. | 2.0.0. |
| debian/ruby-rack-protection |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000119
- https://github.com/sinatra/rack-protection/pull/98
- https://github.com/sinatra/sinatra/commit/8aa6c42ef724f93ae309fb7c5668e19ad547eceb#commitcomment-27964109
- https://access.redhat.com/errata/RHSA-2018:1060
- https://www.debian.org/security/2018/dsa-4247
- https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack-protection/CVE-2018-1000119.yml
- https://github.com/advisories/GHSA-688c-3x49-6rqj (Advisory)
- https://snyk.io/vuln/SNYK-RUBY-SINATRA-20470
- https://snyk.io/vuln/SNYK-RUBY-RACKPROTECTION-20395
- https://github.com/sinatra/sinatra/commit/8aa6c42ef724f93ae309fb7c5668e19ad547eceb
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1534028
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1534029
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1554872
- https://access.redhat.com/security/updates/classification/
- https://bugzilla.redhat.com/show_bug.cgi?id=1534027
- https://security-tracker.debian.org/tracker/CVE-2018-1000119
Frequently Asked Questions
What is CVE-2018-1000119?
CVE-2018-1000119 is a vulnerability in Sinatra rack-protection versions 1.5.4 and 2.0.0.rc3 and earlier that allows a timing attack on CSRF token checking, exposing signatures.
How severe is CVE-2018-1000119?
CVE-2018-1000119 has a severity rating of medium with a CVSS score of 5.9.
How can CVE-2018-1000119 be exploited?
CVE-2018-1000119 can be exploited through network connectivity to the Ruby application.
What is the fix for CVE-2018-1000119?
To fix CVE-2018-1000119, update the rack-protection package to version 2.0.0 or install version 1.5.5.
Where can I find more information about CVE-2018-1000119?
You can find more information about CVE-2018-1000119 at the following references: [link1], [link2], [link3].
- collector/github-advisory-latest
- alias/GHSA-688c-3x49-6rqj
- alias/CVE-2018-1000119
- collector/github-advisory
- collector/security-tracker-debian
- collector/nvd-index
- collector/nvd-cve
- agent/author
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- agent/software-canonical-lookup
- agent/references
- agent/remedy
- agent/severity
- agent/weakness
- agent/softwarecombine
- agent/description
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- package-manager/rubygems
- package-manager/debian
- vendor/sinatrarb
- canonical/sinatrarb rack-protection
- version/sinatrarb rack-protection/2.0.0-rc1
- version/sinatrarb rack-protection/2.0.0-rc2
- version/sinatrarb rack-protection/2.0.0-rc3
- package-manager/redhat