Description
In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted (such as by a timeout) would leave data on the socket. Subsequent requests would then read this data, returning content from the previous response. The race condition window appears to be short, and it would be difficult to purposefully exploit this.
References (5)
Core 5
Core References
Third Party Advisory x_refsource_confirm
https://github.com/excon/excon/security/advisories/GHSA-q58g-455p-8vw9
Patch, Third Party Advisory x_refsource_misc
https://github.com/excon/excon/commit/ccb57d7a422f020dc74f1de4e8fb505ab46d8a29
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00021.html
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2020/01/msg00015.html
Third Party Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00062.html
Scores
CVSS v3
5.8
EPSS
0.0140
EPSS Percentile
68.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:N/A:N
Details
CWE
CWE-362
CWE-664
Status
published
Products (5)
debian/debian_linux
8.0
excon_project/excon
< 0.71.0
opensuse/backports_sle
15.0 sp1
opensuse/leap
15.1
rubygems/excon
0 - 0.71.0RubyGems
Published
Dec 16, 2019
Tracked Since
Feb 18, 2026