CVE-2014-2734

Published: 4/24/2014 Last updated: 8/6/2024 Reserved: 4/8/2014

The openssl extension in Ruby 2.x does not properly maintain the state of process memory after a file is reopened, which allows remote attackers to spoof signatures within the context of a Ruby script that attempts signature verification after performing a certain sequence of filesystem operations. NOTE: this issue has been disputed by the Ruby OpenSSL team and third parties, who state that the original demonstration PoC contains errors and redundant or unnecessarily-complex code that does not appear to be related to a demonstration of the issue. As of 20140502, CVE is not aware of any public comment by the original researcher

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

conf-ruby

Products affected (1)

Product	Vendor	Version
n/a	n/a	n/a

References (20)

http://packetstormsecurity.com/files/126218/Ruby-OpenSSL-Private-Key-Spoofing.html
http://www.osvdb.org/106006
https://news.ycombinator.com/item?id=7601973
http://www.securityfocus.com/bid/66956
http://seclists.org/fulldisclosure/2014/May/13
https://gist.github.com/10446549
https://www.ruby-lang.org/en/news/2014/05/09/dispute-of-vulnerability-cve-2014-2734/
https://gist.github.com/emboss/91696b56cd227c8a0c13
https://github.com/adrienthebo/cve-2014-2734/
http://seclists.org/fulldisclosure/2014/Apr/231
http://packetstormsecurity.com/files/126218/Ruby-OpenSSL-Private-Key-Spoofing.html
http://www.osvdb.org/106006
https://news.ycombinator.com/item?id=7601973
http://www.securityfocus.com/bid/66956
http://seclists.org/fulldisclosure/2014/May/13
https://gist.github.com/10446549
https://www.ruby-lang.org/en/news/2014/05/09/dispute-of-vulnerability-cve-2014-2734/
https://gist.github.com/emboss/91696b56cd227c8a0c13
https://github.com/adrienthebo/cve-2014-2734/
http://seclists.org/fulldisclosure/2014/Apr/231