CVE-2025-25293

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-25293
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. Prior to versions 1.12.4 and 1.18.0, ruby-saml is susceptible to remote Denial of Service (DoS) with compressed SAML responses. ruby-saml uses zlib to decompress SAML responses in case they're compressed. It is possible to bypass the message size check with a compressed assertion since the message size is checked before inflation and not after. This issue may lead to remote Denial of Service (DoS). Versions 1.12.4 and 1.18.0 fix the issue.
CVSS

No CVSS.

References
Link Resource
https://about.gitlab.com/releases/2025/03/12/patch-release-gitlab-17-9-2-released
https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials
https://github.com/SAML-Toolkits/ruby-saml/commit/acac9e9cc0b9a507882c614f25d41f8b47be349a
https://github.com/SAML-Toolkits/ruby-saml/commit/e2da4c6dae7dc01a4d9cd221395140a67e2b3eb1
https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.12.4
https://github.com/SAML-Toolkits/ruby-saml/releases/tag/v1.18.0
https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-92rq-c8cf-prrq
https://github.com/omniauth/omniauth-saml/security/advisories/GHSA-hw46-3hmr-x9xv
https://security.netapp.com/advisory/ntap-20250314-0008/
Configurations

No configuration.

History

14 Mar 2025, 10:15

Type Values Removed Values Added
Summary
  • (es) ruby-saml proporciona inicio de sesión único (SSO) con lenguaje de marcado para aserciones de seguridad (SAML) para Ruby. En versiones anteriores a la 1.12.4 y la 1.18.0, ruby-saml era susceptible a ataques de denegación de servicio (DoS) remotos con respuestas SAML comprimidas. ruby-saml utiliza zlib para descomprimir las respuestas SAML en caso de que estén comprimidas. Es posible omitir la comprobación del tamaño del mensaje con una aserción comprimida, ya que el tamaño del mensaje se comprueba antes del inflado, no después. Este problema puede provocar ataques de denegación de servicio (DoS) remotos. Las versiones 1.12.4 y 1.18.0 solucionan el problema.
References
  • () https://security.netapp.com/advisory/ntap-20250314-0008/ -

12 Mar 2025, 22:15

Type Values Removed Values Added
References
  • () https://github.blog/security/sign-in-as-anyone-bypassing-saml-sso-authentication-with-parser-differentials -

12 Mar 2025, 21:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-03-12 21:15

Updated : 2025-03-14 10:15

NVD link : CVE-2025-25293

Mitre link : CVE-2025-25293

CVE.ORG link : CVE-2025-25293

JSON object : View

Products Affected

No product.

CWE
CWE-400

Uncontrolled Resource Consumption