Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:hex/pow_assent@0.4.1

Type hex

Namespace

Name pow_assent

Version 0.4.1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 0.4.4

Latest_non_vulnerable_version 0.4.4

Affected_by_vulnerabilities

url VCID-x4x4-mzaz-xkg3

vulnerability_id VCID-x4x4-mzaz-xkg3

summary

### Impact

The use of `String.to_atom/1` in PowAssent is susceptible to denial of
service attacks. In `PowAssent.Phoenix.AuthorizationController` a value is
fetched from the user provided params, and `String.to_atom/1` is used to
convert the binary value to an atom so it can be used to fetch the provider
configuration value. This is unsafe as it's user provided data, and can be
used to fill up the whole atom table of ~1M which will cause the app to
crash.

### Workarounds

A plug can be used to validate `conn.params["provider"]` before it reaches
the `PowAssent.Phoenix.AuthorizationController`.

### References

http://erlang.org/doc/efficiency_guide/commoncaveats.html#list_to_atom-1

references

reference_url	https://github.com/pow-auth/pow_assent/security/advisories/GHSA-368c-xvrv-x986
reference_id
reference_type
scores
url	https://github.com/pow-auth/pow_assent/security/advisories/GHSA-368c-xvrv-x986

fixed_packages

url	pkg:hex/pow_assent@0.4.4
purl	pkg:hex/pow_assent@0.4.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:hex/pow_assent@0.4.4

aliases CVE-2019-16764

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x4x4-mzaz-xkg3

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:hex/pow_assent@0.4.1

Package Instance