Vulnerability CVE-2022-28738: Information
Description
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
ruby | sisyphus | 2.7.6-alt1 | 3.1.4-alt4.4 | ALT-PU-2022-2026-1 | 296637 | Fixed |
ruby | sisyphus_e2k | 3.1.4-alt4.3 | 3.1.4-alt4.4 | ALT-PU-2024-6691-1 | - | Fixed |
ruby | sisyphus_riscv64 | 2.7.6-alt1 | 3.1.4-alt4.4 | ALT-PU-2022-5266-1 | - | Fixed |
ruby | p10 | 3.1.2-alt0.1 | 3.1.4-alt2.p10.1 | ALT-PU-2023-4264-4 | 307833 | Fixed |
ruby | p10_e2k | 3.1.4-alt2.p10.1.E2K.1 | 3.1.4-alt2.p10.1.E2K.1 | ALT-PU-2024-7107-1 | - | Fixed |
ruby | c10f1 | 3.1.4-alt2.p10.1 | 2.7.4-alt2.2.1 | ALT-PU-2024-7811-2 | 334397 | Testing |
ruby | c9f2 | 2.7.6-alt0.1.c9f2 | 2.7.6-alt0.1.c9f2 | ALT-PU-2022-2699-1 | 300222 | Fixed |
ruby | p11 | 2.7.6-alt1 | 3.1.4-alt4.4 | ALT-PU-2022-2026-1 | 296637 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://security-tracker.debian.org/tracker/CVE-2022-28738 |
|
https://www.ruby-lang.org/en/news/2022/04/12/double-free-in-regexp-compilation-cve-2022-28738/ |
|
https://hackerone.com/reports/1220911 |
|
https://security.netapp.com/advisory/ntap-20220624-0002/ |
|
GLSA-202401-27 |