|Description||The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service (resource consumption) or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain internal objects, as demonstrated by conducting a SQL injection attack against Ruby on Rails, aka "Unsafe Object Creation Vulnerability."|
|Source||CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)|
|Debian Bugs||700436, 700471|
Vulnerable and fixed packages
The table below lists information on source packages.
|sid, trixie, bookworm||2.6.3+dfsg-1||fixed|
The information below is based on the following data on fixed versions.
- ruby1.8 <not-affected> (json ext not present in 1.8)