CVE-2018-8779

In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the UNIXServer.open and UNIXSocket.open methods are not checked for null characters. It may be connected to an unintended socket.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 79%
Affected Products (NVD)
VendorProductVersion
ruby-langruby
2.2.0 ≤
𝑥
< 2.2.10
ruby-langruby
2.3.0 ≤
𝑥
< 2.3.7
ruby-langruby
2.4.0 ≤
𝑥
< 2.4.4
ruby-langruby
2.5.0 ≤
𝑥
< 2.5.1
ruby-langruby
2.6.0:preview1
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
17.10
debiandebian_linux
7.0
debiandebian_linux
8.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ruby1.9.1
artful
dne
bionic
dne
trusty
Fixed 1.9.3.484-2ubuntu1.11
released
xenial
dne
ruby2.0
artful
dne
bionic
dne
trusty
Fixed 2.0.0.484-1ubuntu2.9
released
xenial
dne
ruby2.3
artful
Fixed 2.3.3-1ubuntu1.5
released
bionic
dne
trusty
dne
xenial
Fixed 2.3.1-2~16.04.9
released
ruby2.5
artful
dne
bionic
Fixed 2.5.1-1
released
trusty
dne
xenial
dne
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libruby2_1-2_1
suse enterprise sap 12 SP4
2.1.9-19.3.2
fixed
suse enterprise sap 12 SP5
2.1.9-19.3.2
fixed
suse enterprise server 12 SP2
2.1.9-19.3.2
fixed
suse enterprise server 12 SP3
2.1.9-19.3.2
fixed
suse enterprise server 12 SP4
2.1.9-19.3.2
fixed
suse enterprise server 12 SP5
2.1.9-19.3.2
fixed
libruby2_5-2_5
suse enterprise desktop 15
2.5.5-4.3.1
fixed
suse enterprise desktop 15 SP1
2.5.5-4.3.1
fixed
suse enterprise desktop 15 SP2
2.5.5-4.3.1
fixed
suse enterprise desktop 15 SP3
2.5.5-4.3.1
fixed
suse enterprise desktop 15 SP4
2.5.5-4.3.1
fixed
suse enterprise desktop 15 SP5
2.5.5-4.3.1
fixed
suse enterprise desktop 15 SP6
2.5.5-4.3.1
fixed
suse enterprise desktop 15 SP7
2.5.9-150700.22.16
fixed
suse enterprise sap 15
2.5.5-4.3.1
fixed
suse enterprise sap 15 SP1
2.5.5-4.3.1
fixed
suse enterprise sap 15 SP2
2.5.5-4.3.1
fixed
suse enterprise sap 15 SP3
2.5.5-4.3.1
fixed
suse enterprise sap 15 SP4
2.5.5-4.3.1
fixed
suse enterprise sap 15 SP5
2.5.5-4.3.1
fixed
suse enterprise sap 15 SP6
2.5.5-4.3.1
fixed
suse enterprise sap 15 SP7
2.5.9-150700.22.16
fixed
suse enterprise server 15
2.5.5-4.3.1
fixed
suse enterprise server 15 SP1
2.5.5-4.3.1
fixed
suse enterprise server 15 SP2
2.5.5-4.3.1
fixed
suse enterprise server 15 SP3
2.5.5-4.3.1
fixed
suse enterprise server 15 SP4
2.5.5-4.3.1
fixed
suse enterprise server 15 SP5
2.5.5-4.3.1
fixed
suse enterprise server 15 SP6
2.5.5-4.3.1
fixed
suse enterprise server 15 SP7
2.5.9-150700.22.16
fixed
yast2-ruby-bindings
suse enterprise server 12 SP2
3.1.53-9.8.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
ruby
RHEL 7
0:2.0.0.648-36.el7
fixed
ruby-devel
RHEL 7
0:2.0.0.648-36.el7
fixed
ruby-doc
RHEL 7
0:2.0.0.648-36.el7
fixed
ruby-irb
RHEL 7
0:2.0.0.648-36.el7
fixed
ruby-libs
RHEL 7
0:2.0.0.648-36.el7
fixed
ruby-tcltk
RHEL 7
0:2.0.0.648-36.el7
fixed
rubygem-bigdecimal
RHEL 7
0:1.2.0-36.el7
fixed
rubygem-io-console
RHEL 7
0:0.4.2-36.el7
fixed
rubygem-json
RHEL 7
0:1.7.7-36.el7
fixed
rubygem-minitest
RHEL 7
0:4.3.2-36.el7
fixed
rubygem-psych
RHEL 7
0:2.0.0-36.el7
fixed
rubygem-rake
RHEL 7
0:0.9.6-36.el7
fixed
rubygem-rdoc
RHEL 7
0:4.0.0-36.el7
fixed
rubygems
RHEL 7
0:2.0.14.1-36.el7
fixed
rubygems-devel
RHEL 7
0:2.0.14.1-36.el7
fixed
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
http://www.securityfocus.com/bid/103767
http://www.securitytracker.com/id/1042004
https://access.redhat.com/errata/RHSA-2018:3729
https://access.redhat.com/errata/RHSA-2018:3730
https://access.redhat.com/errata/RHSA-2018:3731
https://access.redhat.com/errata/RHSA-2019:2028
https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
https://lists.debian.org/debian-lts-announce/2018/04/msg00024.html
https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
https://usn.ubuntu.com/3626-1/
https://www.debian.org/security/2018/dsa-4259
https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-unixsocket-cve-2018-8779/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-2-10-released/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-3-7-released/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-5-1-released/
http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
http://www.securityfocus.com/bid/103767
http://www.securitytracker.com/id/1042004
https://access.redhat.com/errata/RHSA-2018:3729
https://access.redhat.com/errata/RHSA-2018:3730
https://access.redhat.com/errata/RHSA-2018:3731
https://access.redhat.com/errata/RHSA-2019:2028
https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html
https://lists.debian.org/debian-lts-announce/2018/04/msg00024.html
https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
https://usn.ubuntu.com/3626-1/
https://www.debian.org/security/2018/dsa-4259
https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-unixsocket-cve-2018-8779/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-2-10-released/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-3-7-released/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-5-1-released/