Fluid Attacks Database

Description

ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Prior to versions 1.12.4 and 1.18.0, ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses. ruby-saml uses zlib to decompress SAML responses in case they're compressed. It is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This issue may lead to remote Denial of Service (DoS). Versions 1.12.4 and 1.18.0 fix the issue.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	ruby-saml	=1.11.0-1 \|\| =1.11.0-1+deb11u1 \|\| >=0 <1.11.0-1+deb11u2	1.11.0-1+deb11u2
debian 12	ruby-saml	=1.13.0-1 \|\| =1.13.0-1+deb12u1 \|\| =1.15.0-1 \|\| =1.17.0-1	-
rubygems	ruby-saml	>=0 <1.12.4 \|\| >=1.13.0 <1.18.0	1.12.4, 1.18.0

Aliases

1. CVE-2025-252932. NVD-2025-252933. OSV-DEBIAN-2025-252934. OSV-2025-252935. GHSA-92rq-c8cf-prrq6. GHSA-hw46-3hmr-x9xv7. https://securitylab.github.com/advisories/GHSL-2024-355_ruby-saml8. GCVE-2025-252939. SECURITY-TRACKER-CVE-2025-2529310. lists.debian.org

References

1. https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-92rq-c8cf-prrq2. https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv3. https://github.com/SAML-Toolkits/ruby-saml/commit/acac9e9cc0b9a507882c614f25d41f8b47be349a4. https://github.com/SAML-Toolkits/ruby-saml/commit/e2da4c6dae7dc01a4d9cd221395140a67e2b3eb15. https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released6. https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials7. https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.48. https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.09. https://github.com/rubysec/ruby-advisory-db/blob/master/gems/ruby-saml/CVE-2025-25293.yml10. https://security.netapp.com/advisory/ntap-20250314-0008

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.