CVE-2018-16396

Impact:
Moderate
Public Date:
2018-10-17
CWE:
CWE-20
Bugzilla:
1643089: CVE-2018-16396 ruby: Tainted flags are not propagated in Array#pack and String#unpack with some directives

The MITRE CVE dictionary describes this issue as:

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.

Find out more about CVE-2018-16396 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Subscription Asset Manager is now in a reduced support phase receiving only Critical impact security fixes. This issue has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates.

Red Hat Virtualization includes a vulnerable version of ruby, however the affected functionality is not used in Red Hat Virtualization or any of its dependencies. A future update may address this issue.

CVSS v3 metrics

CVSS3 Base Score 5.9
CVSS3 Base Metrics CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity Impact High
Availability Impact None

Red Hat Security Errata

Platform Errata Release Date
Red Hat Software Collections for Red Hat Enterprise Linux 6 (rh-ruby24-ruby) RHSA-2018:3730 2018-11-29
Red Hat Software Collections for Red Hat Enterprise Linux 6 (rh-ruby23-ruby) RHSA-2018:3729 2018-11-29
Red Hat Software Collections for Red Hat Enterprise Linux 7 (rh-ruby23-ruby) RHSA-2018:3729 2018-11-29
Red Hat Software Collections for Red Hat Enterprise Linux 7 (rh-ruby24-ruby) RHSA-2018:3730 2018-11-29
Red Hat Software Collections for Red Hat Enterprise Linux 7 (rh-ruby25-ruby) RHSA-2018:3731 2018-11-29

Affected Packages State

Platform Package State
Red Hat Virtualization 4 ruby Will not fix
Red Hat Subscription Asset Manager 1 ruby193 Will not fix
Red Hat Enterprise Linux 7 ruby Affected
Red Hat Enterprise Linux 6 ruby Will not fix
Red Hat Enterprise Linux 5 ruby Will not fix

External References

Last Modified

CVE description copyright © 2017, The MITRE Corporation