Aaron Patterson

**Name of the Vulnerable Software and Affected Versions** Ruby versions prior to 2.2.10 Ruby versions 2.3.x prior to 2.3.7 Ruby versions 2.4.x prior to 2.4.4 Ruby versions 2.5.x prior to 2.5.1 Ruby version 2.6.0-preview1 **Description** The issue is related to the WEBrick library in the Ruby programming language, specifically concerning the handling of CRLF sequences in HTTP headers. This can allow an attacker to inject crafted HTTP headers, potentially leading to an HTTP Response Splitting attack. An attacker can exploit this by injecting a crafted key and value into an HTTP response for the HTTP server of WEBrick. **Recommendations** For Ruby versions prior to 2.2.10, update to version 2.2.10 or later. For Ruby versions 2.3.x prior to 2.3.7, update to version 2.3.7 or later. For Ruby versions 2.4.x prior to 2.4.4, update to version 2.4.4 or later. For Ruby versions 2.5.x prior to 2.5.1, update to version 2.5.1 or later. For Ruby version 2.6.0-preview1, update to a later version.

**Name of the Vulnerable Software and Affected Versions** Action Pack versions 4.x through 4.2.5.0 Action Pack versions 5.x through 5.0.0.beta1.0 **Description** The issue is related to errors in resource management in the actionpack/lib/action dispatch/routing/route set.rb component of the Action Pack in Ruby on Rails. It allows a remote attacker to cause a denial of service by exploiting an application's use of a wildcard controller route, leading to superfluous caching and memory consumption. **Recommendations** For Action Pack versions 4.x through 4.2.5.0, update to version 4.2.5.1 or later. For Action Pack versions 5.x through 5.0.0.beta1.0, update to version 5.0.0.beta1.1 or later.

**Name of the Vulnerable Software and Affected Versions** Action Pack in Ruby on Rails versions 3.2.x through 3.2.22, 4.0.x through 4.1.14, 4.2.x through 4.2.5, and 5.x before 5.0.0.beta1.1 **Description** The issue is related to the improper restriction of the MIME type cache in the actionpack/lib/action dispatch/http/mime type.rb file. This allows remote attackers to cause a denial of service (memory consumption) via a crafted HTTP Accept header. **Recommendations** For versions 3.2.x through 3.2.22, update to version 3.2.22.1 or later. For versions 4.0.x through 4.1.14, update to version 4.1.14.1 or later. For versions 4.2.x through 4.2.5, update to version 4.2.5.1 or later. For versions 5.x before 5.0.0.beta1.1, update to version 5.0.0.beta1.1 or later.

**Name of the Vulnerable Software and Affected Versions** No information is available about the vulnerable software and its affected versions. **Description** General information about the issue is not provided. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Ruby on Rails versions prior to 2.3.15 Ruby on Rails versions 3.0.x through 3.0.17 Ruby on Rails versions 3.1.x through 3.1.8 Ruby on Rails versions 3.2.x through 3.2.9 **Description** The issue allows remote attackers to execute arbitrary SQL commands via a crafted request, leveraging incorrect behavior of dynamic finders in applications that can use unexpected data types in certain `find by ` method calls. **Recommendations** For Ruby on Rails versions prior to 2.3.15, update to version 2.3.15 or later. For Ruby on Rails versions 3.0.x through 3.0.17, update to version 3.0.18 or later. For Ruby on Rails versions 3.1.x through 3.1.8, update to version 3.1.9 or later. For Ruby on Rails versions 3.2.x through 3.2.9, update to version 3.2.10 or later.