Back to bug 2164800
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Red Hat Bugzilla | 2023-03-02 08:28:29 UTC | Depends On | 2164803, 2164802 | |
| CC | myarboro | |||
| Kazu Yoshida | 2023-03-14 03:00:01 UTC | CC | kyoshida | |
| Avinash Hanwate | 2023-03-16 04:39:57 UTC | Doc Text | A flaw was found in the rubygem-actionpack. RubyGems actionpack gem is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in the Action Dispatch module. By sending specially-crafted cookies with a X_FORWARDED_HOST header, a remote attacker could exploit this vulnerability to use large amounts of CPU and memory, and results in a denial of service condition. | |
| RaTasha Tillery-Smith | 2023-03-16 14:28:42 UTC | Doc Text | A flaw was found in the rubygem-actionpack. RubyGems actionpack gem is vulnerable to a denial of service, caused by a regular expression denial of service (ReDoS) flaw in the Action Dispatch module. By sending specially-crafted cookies with a X_FORWARDED_HOST header, a remote attacker could exploit this vulnerability to use large amounts of CPU and memory, and results in a denial of service condition. | A flaw was found in the rubygem-actionpack. RubyGems actionpack gem is vulnerable to a denial of service caused by a regular expression denial of service (ReDoS) flaw in the Action Dispatch module. By sending specially-crafted cookies with an X_FORWARDED_HOST header, a remote attacker could exploit this vulnerability to use large amounts of CPU and memory, which results in a denial of service condition. |
| RaTasha Tillery-Smith | 2023-03-16 14:32:24 UTC | Doc Text | A flaw was found in the rubygem-actionpack. RubyGems actionpack gem is vulnerable to a denial of service caused by a regular expression denial of service (ReDoS) flaw in the Action Dispatch module. By sending specially-crafted cookies with an X_FORWARDED_HOST header, a remote attacker could exploit this vulnerability to use large amounts of CPU and memory, which results in a denial of service condition. | A flaw was found in the rubygem-actionpack. RubyGems actionpack gem is vulnerable to a denial of service caused by a regular expression denial of service (ReDoS) flaw in the Action Dispatch module. By sending specially-crafted cookies with an X_FORWARDED_HOST header, a remote attacker could exploit this vulnerability to use large amounts of CPU and memory, resulting in a denial of service. |
| RaTasha Tillery-Smith | 2023-03-16 14:35:05 UTC | Doc Text | A flaw was found in the rubygem-actionpack. RubyGems actionpack gem is vulnerable to a denial of service caused by a regular expression denial of service (ReDoS) flaw in the Action Dispatch module. By sending specially-crafted cookies with an X_FORWARDED_HOST header, a remote attacker could exploit this vulnerability to use large amounts of CPU and memory, resulting in a denial of service. | A flaw was found in the rubygem-actionpack. RubyGem's actionpack gem is vulnerable to a denial of service caused by a regular expression denial of service (ReDoS) flaw in the Action Dispatch module. By sending specially-crafted cookies with an X_FORWARDED_HOST header, a remote attacker could exploit this vulnerability to use large amounts of CPU and memory, resulting in a denial of service. |
| Alex Wang | 2023-03-17 15:12:39 UTC | CC | alex.wang | |
| Red Hat Bugzilla | 2023-05-15 20:19:05 UTC | CC | btotty | |
| Red Hat Bugzilla | 2023-07-07 08:28:32 UTC | Assignee | security-response-team | nobody |
Back to bug 2164800