Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 159e03af by Salvatore Bonaccorso at 2024-02-23T06:44:06+01:00 Add new ruby-rack CVEs - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,11 @@ +CVE-2024-26141 [Reject Range headers which are too large] + - ruby-rack <unfixed> + NOTE: https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b (v2.2.8.1) +CVE-2024-25126 [Fixed ReDoS in Content Type header parsing] + - ruby-rack <unfixed> +CVE-2024-26146 [Fixed ReDoS in Accept header parsing] + - ruby-rack <unfixed> + NOTE: https://github.com/rack/rack/commit/e4c117749ba24a66f8ec5a08eddf68deeb425ccd (v2.2.8.1) CVE-2024-26592 - linux 6.6.15-1 [bookworm] - linux 6.1.76-1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/159e03af511e5a75cf46b365e0befe93c7d15341 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/159e03af511e5a75cf46b365e0befe93c7d15341 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
