Fluid Attacks Database

Description

Ruby-saml allows attackers to perform XML signature wrapping attacks ruby-saml prior to version 1.3.0 is vulnerable to an XML signature wrapping attack in the specific scenario where there was a signature that referenced at the same time 2 elements (but past the scheme validator process since 1 of the element was inside the encrypted assertion). ruby-saml users must update to 1.3.0, which implements 3 extra validations to mitigate this kind of attack.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rubygems	ruby-saml	>=0 <1.3.0	1.3.0
debian 11	ruby-saml	>=0 <1.3.0-1	1.3.0-1
debian 12	ruby-saml	>=0 <1.3.0-1	1.3.0-1

Aliases

1. CVE-2016-56972. NVD-2016-56973. OSV-2016-56974. OSV-DEBIAN-2016-56975. GCVE-2016-56976. SECURITY-TRACKER-CVE-2016-5697

References

1. https://github.com/onelogin/ruby-saml/commit/a571f52171e6bfd87db59822d1d9e8c38fb3b9952. https://github.com/rubysec/ruby-advisory-db/blob/master/gems/ruby-saml/CVE-2016-5697.yml3. http://www.openwall.com/lists/oss-security/2016/06/24/3