CVE-2018-1000119 – rack-protection: Timing attack in authenticity_token.rb

https://notcve.org/view.php?id=CVE-2018-1000119

Sinatra rack-protection versions 1.5.4 and 2.0.0.rc3 and earlier contains a timing attack vulnerability in the CSRF token checking that can result in signatures can be exposed. This attack appear to be exploitable via network connectivity to the ruby application. This vulnerability appears to have been fixed in 1.5.5 and 2.0.0. Sinatra rack-protection, en versiones 1.5.4, 2.0.0.rc3 y anteriores, contiene una vulnerabilidad de ataque de sincronización en la comprobación de token CSRF que puede resultar en que las firmas queden expuestas. Este ataque parece ser explotable mediante conectividad de red en la aplicación Ruby. • https://access.redhat.com/errata/RHSA-2018:1060 https://github.com/sinatra/rack-protection/pull/98 https://github.com/sinatra/sinatra/commit/8aa6c42ef724f93ae309fb7c5668e19ad547eceb#commitcomment-27964109 https://www.debian.org/security/2018/dsa-4247 https://access.redhat.com/security/cve/CVE-2018-1000119 https://bugzilla.redhat.com/show_bug.cgi?id=1534027 • CWE-203: Observable Discrepancy CWE-385: Covert Timing Channel •