From: "nagachika (Tomoyuki Chikanaga)" <nagachika00@...>
Date: 2013-08-17T00:38:00+09:00
Subject: [ruby-core:56653] [ruby-trunk - Bug #8750] unit test fix for	CVE-2013-4073 seems to be incomplete


Issue #8750 has been updated by nagachika (Tomoyuki Chikanaga).

Backport changed from 1.9.3: REQUIRED, 2.0.0: REQUIRED to 1.9.3: REQUIRED, 2.0.0: DONE

Backported to ruby_2_0_0 branch at r42588.
----------------------------------------
Bug #8750: unit test fix for CVE-2013-4073 seems to be incomplete
https://bugs.ruby-lang.org/issues/8750#change-41188

Author: terceiro (Antonio Terceiro)
Status: Closed
Priority: Normal
Assignee: 
Category: 
Target version: 
ruby -v: trunk
Backport: 1.9.3: REQUIRED, 2.0.0: DONE


Hello, I was just testing some Ruby versions against vulnerability against Hostname check bypassing vulnerability in SSL client (CVE-2013-4073), and it looks like the unit test added together with the fix for that issue passes even without that patch applied.

I noticed that the tampered input is using single quotes, as in
'www.example.com\0.evil.com'

I could only make those tests fail when I switched the single quotes into single quotes. This should probably apply to 1.9.3 andn 2.0.0 as well.


-- 
http://bugs.ruby-lang.org/