[DRE-maint] Bug#789311: ruby-rack: CVE-2015-3225: Potential Denial of Service Vulnerability in Rack normalize_params()
Salvatore Bonaccorso
carnil at debian.org
Fri Jun 19 17:38:32 UTC 2015
Source: ruby-rack
Version: 1.4.1-1
Severity: important
Tags: security patch upstream fixed-upstream
Hi,
the following vulnerability was published for ruby-rack.
CVE-2015-3225[0]:
Potential Denial of Service Vulnerability in Rack normalize_params()
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2015-3225
Regards,
Salvatore
More information about the Pkg-ruby-extras-maintainers
mailing list