CVE-2017-0899

CRITICAL

RubyGems < 2.6.13 - Terminal Escape Sequence Injection via Gem Specification

Title source: llm

Description

RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem specification would execute terminal escape sequences.

References (13)

Core 13

Core References

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:0585

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2017/dsa-3966

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:0378

Exploit, Patch, Third Party Advisory x_refsource_misc

https://hackerone.com/reports/226335

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1039249

Patch, Third Party Advisory x_refsource_misc

https://github.com/rubygems/rubygems/commit/1bcbc7fe637b03145401ec9c094066285934a7f1

View Patch ZIP pw:eip

Patch, Third Party Advisory x_refsource_misc

https://github.com/rubygems/rubygems/commit/ef0aa611effb5f54d40c7fba6e8235eb43c5a491

View Patch ZIP pw:eip

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2017:3485

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:0583

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201710-01

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/100576

Patch, Vendor Advisory x_refsource_misc

http://blog.rubygems.org/2017/08/27/2.6.13-released.html

Scores

CVSS v3 9.8

EPSS 0.1081

EPSS Percentile 95.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-150 CWE-94

Status published

Products (15)

debian/debian_linux 8.0

debian/debian_linux 9.0

HackerOne/RubyGems Versions before 2.6.13

redhat/enterprise_linux_desktop 7.0

redhat/enterprise_linux_server 7.0

redhat/enterprise_linux_server_aus 7.4

redhat/enterprise_linux_server_aus 7.6

redhat/enterprise_linux_server_eus 7.4

redhat/enterprise_linux_server_eus 7.5

redhat/enterprise_linux_server_eus 7.6

... and 5 more

Published Aug 31, 2017

Tracked Since Feb 18, 2026