Hide Forgot
Marek Hulan (mhulan) reports: I found a DoS bug in foreman. The problem is in converting a user input into a symbol. Since MRI garbage collector does not free any instantiated symbol any authenticated user can create inputs to consume all system memory. Memory consumption is linear (input size = consumed memory amount) and every input must be unique. Since the input comes from HTTP request via method PUT it's not hard to send large portion of data at a time. Basically an attacker is just limited by HTTP protocol and server configuration.
http://projects.theforeman.org/issues/2860
Acknowledgements: This issue was discovered by Marek Hulán of the Red Hat Foreman team.
Fixed in upstream http://projects.theforeman.org/projects/foreman/repository/revisions/d370f4aac4efab233371d243e1414f843d6dcae6
This issue has been addressed in following products: OpenStack 3 for RHEL 6 Via RHSA-2013:1196 https://rhn.redhat.com/errata/RHSA-2013-1196.html