CVE-2011-3186

Published: 29 August 2011

CRLF injection vulnerability in actionpack/lib/action_controller/response.rb in Ruby on Rails 2.3.x before 2.3.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the Content-Type header.

Priority

Status

Package	Release	Status
rails Launchpad, Ubuntu, Debian	hardy	Ignored (end of life)
	lucid	Released (2.2.3-2ubuntu0.1)
	maverick	Released (2.3.5-1.1ubuntu0.1)
	natty	Released (2.3.5-1.2ubuntu1.1)
	upstream	Released (2.3.14.1)
	Patches: other: https://github.com/rails/rails/commit/11dafeaa7533be26441a63618be93a03869c83a9 vendor: http://www.debian.org/security/2011/dsa-2301

References

http://www.openwall.com/lists/oss-security/2011/08/22/13
https://www.cve.org/CVERecord?id=CVE-2011-3186
NVD
Launchpad
Debian

Bugs

https://bugzilla.redhat.com/show_bug.cgi?id=732156
https://bugs.launchpad.net/ubuntu/+source/rails/+bug/842667

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›