Pitbulk

Name of the Vulnerable Software and Affected Versions: ruby-saml versions prior to 1.12.4 and 1.18.0 Description: The issue is related to the ruby-saml library, which provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. The library is susceptible to remote Denial of Service (DoS) with compressed SAML responses. This is because ruby-saml uses zlib to decompress SAML responses, and it is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This may lead to remote Denial of Service (DoS). Recommendations: To resolve the issue, update to version 1.12.4 or 1.18.0, or later, of the ruby-saml library. As a temporary workaround, consider disabling the use of compressed SAML responses until a patch is available. Restrict access to the vulnerable ruby-saml library to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ruby-saml versions prior to 1.12.4 and 1.18.0 **Description** An authentication bypass vulnerability was found in ruby-saml due to a parser differential. ReXML and Nokogiri parse XML differently, generating entirely different document structures from the same XML input. This allows an attacker to execute a Signature Wrapping attack, which may lead to authentication bypass. **Recommendations** To resolve the issue, update to version 1.12.4 or 1.18.0, as these versions contain a patch for the vulnerability. For versions prior to 1.12.4 and 1.18.0, consider disabling the ReXML and Nokogiri parsers until a patch is applied. Restrict access to the SAML authentication endpoint to minimize the risk of exploitation.