RHSA-2013:0582: Moderate: Red Hat OpenShift Enterprise 1.1.1 update

First published: Thu Feb 28 2013(Updated: )

OpenShift Enterprise is a cloud computing Platform-as-a-Service (PaaS)<br>solution from Red Hat, and is designed for on-premise or private cloud<br>deployments.<br>Installing the updated packages and restarting the OpenShift services are<br>the only requirements for this update. However, if you are updating your<br>system to Red Hat Enterprise Linux 6.4 while applying OpenShift Enterprise<br>1.1.1 updates, it is recommended that you restart your system.<br>For further information about this release, refer to the OpenShift<br>Enterprise 1.1.1 Technical Notes, available shortly from<br><a href="https://access.redhat.com/knowledge/docs/" target="_blank">https://access.redhat.com/knowledge/docs/</a> This update also fixes the following security issues:<br>Multiple cross-site scripting (XSS) flaws were found in rubygem-actionpack.<br>A remote attacker could use these flaws to conduct XSS attacks against<br>users of an application using rubygem-actionpack. (CVE-2012-3463,<br>CVE-2012-3464, CVE-2012-3465)<br>It was found that certain methods did not sanitize file names before<br>passing them to lower layer routines in Ruby. If a Ruby application created<br>files with names based on untrusted input, it could result in the creation<br>of files with different names than expected. (CVE-2012-4522)<br>A denial of service flaw was found in the implementation of associative<br>arrays (hashes) in Ruby. An attacker able to supply a large number of<br>inputs to a Ruby application (such as HTTP POST request parameters sent to<br>a web application) that are used as keys when inserting data into an array<br>could trigger multiple hash function collisions, making array operations<br>take an excessive amount of CPU time. To mitigate this issue, a new, more<br>collision resistant algorithm has been used to reduce the chance of an<br>attacker successfully causing intentional collisions. (CVE-2012-5371)<br>Input validation vulnerabilities were discovered in rubygem-activerecord.<br>A remote attacker could possibly use these flaws to perform an SQL<br>injection attack against an application using rubygem-activerecord.<br>(CVE-2012-2661, CVE-2012-2695, CVE-2013-0155)<br>Input validation vulnerabilities were discovered in rubygem-actionpack. A<br>remote attacker could possibly use these flaws to perform an SQL injection<br>attack against an application using rubygem-actionpack and<br>rubygem-activerecord. (CVE-2012-2660, CVE-2012-2694)<br>A flaw was found in the HTTP digest authentication implementation in<br>rubygem-actionpack. A remote attacker could use this flaw to cause a<br>denial of service of an application using rubygem-actionpack and digest<br>authentication. (CVE-2012-3424)<br>A flaw was found in the handling of strings in Ruby safe level 4. A remote<br>attacker can use Exception#to_s to destructively modify an untainted string<br>so that it is tainted, the string can then be arbitrarily modified.<br>(CVE-2012-4466)<br>A flaw was found in the method for translating an exception message into a<br>string in the Ruby Exception class. A remote attacker could use this flaw<br>to bypass safe level 4 restrictions, allowing untrusted (tainted) code to<br>modify arbitrary, trusted (untainted) strings, which safe level 4<br>restrictions would otherwise prevent. (CVE-2012-4464)<br>It was found that ruby_parser from rubygem-ruby_parser created a temporary<br>file in an insecure way. A local attacker could use this flaw to perform a<br>symbolic link attack, overwriting arbitrary files accessible to the<br>application using ruby_parser. (CVE-2013-0162)<br>The CVE-2013-0162 issue was discovered by Michael Scherer of the Red Hat<br>Regional IT team.<br>Users are advised to upgrade to Red Hat OpenShift Enterprise 1.1.1.<br>

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/redhat-errata
• anchor-id/RHSA-2013:0582
• agent/severity
• agent/tags
• agent/references
• agent/weakness
• agent/title
• agent/description
• agent/type
• agent/event
• agent/remedy
• agent/softwarecombine
• agent/last-modified-date
• agent/first-publish-date
• package-manager/redhat