Описание
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. An authentication bypass vulnerability was found in ruby-saml prior to versions 1.12.4 and 1.18.0 due to a parser differential. ReXML and Nokogiri parse XML differently, the parsers can generate entirely different document structures from the same XML input. That allows an attacker to be able to execute a Signature Wrapping attack. This issue may lead to authentication bypass. Versions 1.12.4 and 1.18.0 contain a patch for the issue.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | released | 1.7.2-1ubuntu0.1~esm2 |
| esm-apps/focal | released | 1.11.0-1ubuntu0.1+esm1 |
| esm-apps/jammy | released | 1.13.0-1ubuntu0.1+esm1 |
| esm-apps/noble | released | 1.15.0-1ubuntu0.24.04.1+esm1 |
| esm-apps/xenial | ignored | risks regression |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| noble | needed | |
| oracular | released | 1.15.0-1ubuntu0.24.10.2 |
Показывать по
Ссылки на источники
EPSS
Связанные уязвимости
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. An authentication bypass vulnerability was found in ruby-saml prior to versions 1.12.4 and 1.18.0 due to a parser differential. ReXML and Nokogiri parse XML differently, the parsers can generate entirely different document structures from the same XML input. That allows an attacker to be able to execute a Signature Wrapping attack. This issue may lead to authentication bypass. Versions 1.12.4 and 1.18.0 contain a patch for the issue.
ruby-saml provides security assertion markup language (SAML) single si ...
Ruby SAML allows a SAML authentication bypass due to namespace handling (parser differential)
Уязвимость реализации протокола единого входа SAML SSO библиотеки Ruby SAML и программной платформы на базе git для совместной работы над кодом GitLab CE/EE, позволяющая нарушителю обойти аутентификацию
EPSS