Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-25293

Опубликовано: 12 мар. 2025
Источник: debian
EPSS Низкий

Описание

ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Prior to versions 1.12.4 and 1.18.0, ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses. ruby-saml uses zlib to decompress SAML responses in case they're compressed. It is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This issue may lead to remote Denial of Service (DoS). Versions 1.12.4 and 1.18.0 fix the issue.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
ruby-samlremovedpackage

Примечания

  • https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-92rq-c8cf-prrq

  • Vulnerability might be the result of an incomplete fix for a zipbomb attack.

  • https://github.com/SAML-Toolkits/ruby-saml/pull/383 (v1.12.0)

  • https://github.com/SAML-Toolkits/ruby-saml/commit/533c84ebfc40f8cbac645b6c76ce4949f95d27d6 (v1.12.0)

  • https://github.com/SAML-Toolkits/ruby-saml/commit/e2da4c6dae7dc01a4d9cd221395140a67e2b3eb1 (v1.12.4)

  • https://github.com/SAML-Toolkits/ruby-saml/pull/601 (v1.13.0..v1.18.0)

  • https://github.com/SAML-Toolkits/ruby-saml/commit/c21d6935b43a032701d99e398cbfc551e80bfb72 (v1.13.0)

  • https://github.com/SAML-Toolkits/ruby-saml/commit/acac9e9cc0b9a507882c614f25d41f8b47be349a (v1.18.0)

  • The MAX_BYTE_SIZE check is too late, leaving CVE-2025-54572 unfixed.

EPSS

Процентиль: 86%
0.02704
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2025-25293

CVSS3: 7.5
ubuntu
11 месяцев назад

ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Prior to versions 1.12.4 and 1.18.0, ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses. ruby-saml uses zlib to decompress SAML responses in case they're compressed. It is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This issue may lead to remote Denial of Service (DoS). Versions 1.12.4 and 1.18.0 fix the issue.

nvd логотип

CVE-2025-25293

CVSS3: 7.5
nvd
11 месяцев назад

ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Prior to versions 1.12.4 and 1.18.0, ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses. ruby-saml uses zlib to decompress SAML responses in case they're compressed. It is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This issue may lead to remote Denial of Service (DoS). Versions 1.12.4 and 1.18.0 fix the issue.

github логотип

GHSA-92rq-c8cf-prrq

CVSS3: 7.5
github
11 месяцев назад

Ruby SAML allows remote Denial of Service (DoS) with compressed SAML responses

fstec логотип

BDU:2025-03642

CVSS3: 7.5
fstec
11 месяцев назад

Уязвимость протокола единого входа SAML SSO библиотеки Ruby SAML, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 86%
0.02704
Низкий