Actions
Bug #39190
closed
CVE-2026-33176: Active Support Denial of Service via large scientific notation strings
Difficulty:
Triaged:
No
Description
Active Support number helpers accept strings containing scientific notation (e.g. `1e10000`), which BigDecimal expands into extremely large decimal representations. This causes excessive memory allocation and
CPU consumption when the expanded number is formatted, resulting in a potential DoS vulnerability.
Rails 7.0 is no longer maintained upstream. Backport the security fix from supported Rails versions to the Foreman packaging project.
Upstream fix commit (Rails 7.2+):
https://github.com/rails/rails/commit/ebd6be18120d1136511eb516338e27af25ac0a1a
Security advisory:
https://github.com/rails/rails/security/advisories/GHSA-2j26-frm8-cmj9
Updated by The Foreman Bot 2 months ago
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/foreman/pull/10925 added
Updated by The Foreman Bot 2 months ago
- Pull request https://github.com/theforeman/foreman-packaging/pull/13315 added
Updated by The Foreman Bot 2 months ago
- Pull request deleted (
https://github.com/theforeman/foreman/pull/10925, https://github.com/theforeman/foreman-packaging/pull/13315)
Updated by The Foreman Bot 2 months ago
- Pull request https://github.com/theforeman/foreman-packaging/pull/13315 added
Updated by Jakub Duchek 2 months ago
- Status changed from Ready For Testing to Closed
Applied in changeset rpms:foreman-packaging|c5fc8c6558f9e4fe1dbace4bcdd7681b92c90b5e.
Updated by The Foreman Bot 2 months ago
- Pull request https://github.com/theforeman/foreman-packaging/pull/13320 added
Updated by The Foreman Bot 2 months ago
- Pull request https://github.com/theforeman/foreman-packaging/pull/13321 added
Updated by Ondřej Gajdušek 26 days ago
- Fixed in Releases 3.17.3, 3.18.2, 3.19.0 added
Actions