CVE-2018-1000073

Name of the Vulnerable Software and Affected Versions RubyGems versions 2.2.9 and earlier RubyGems versions 2.3.6 and earlier RubyGems versions 2.4.3 and earlier RubyGems versions 2.5.0 and earlier RubyGems prior to trunk revision 62422

Description The issue is related to a Directory Traversal vulnerability in the install location function of package.rb. This vulnerability can result in path traversal when writing to a symlinked basedir outside of the root. The vulnerability exists due to incorrect restriction of the directory path name with limited access. Exploitation of the vulnerability may allow a remote attacker to access arbitrary files.

Recommendations For RubyGems versions 2.2.9 and earlier, update to a version later than 2.7.6. For RubyGems versions 2.3.6 and earlier, update to a version later than 2.7.6. For RubyGems versions 2.4.3 and earlier, update to a version later than 2.7.6. For RubyGems versions 2.5.0 and earlier, update to a version later than 2.7.6. For RubyGems prior to trunk revision 62422, update to a revision later than 62422 or to a version later than 2.7.6. As a temporary workaround, consider restricting access to the install location function of package.rb to minimize the risk of exploitation.