Name | CVE-2011-3187 |
Description | The to_s method in actionpack/lib/action_dispatch/middleware/remote_ip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which might allow remote attackers to inject arbitrary text into log files or bypass intended address parsing via a crafted header. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Vulnerable and fixed packages
The table below lists information on source packages.
Source Package | Release | Version | Status |
---|
rails (PTS) | buster | 2:5.2.2.1+dfsg-1+deb10u3 | vulnerable (unimportant) |
| buster (security) | 2:5.2.2.1+dfsg-1+deb10u5 | vulnerable (unimportant) |
| bullseye, bullseye (security) | 2:6.0.3.7+dfsg-2+deb11u2 | vulnerable (unimportant) |
| bookworm | 2:6.1.7.3+dfsg-1 | vulnerable (unimportant) |
| sid, trixie | 2:6.1.7.3+dfsg-3 | vulnerable (unimportant) |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|
rails | source | (unstable) | (unfixed) | unimportant | | |
Notes
X-Forwarded-For header is user supplied (like User-Agent)