Количество 11
Количество 11
CVE-2024-26146
Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack applications using Ruby 3.2 or newer are unaffected. This vulnerability is fixed in 2.0.9.4, 2.1.4.4, 2.2.8.1, and 3.0.9.1.
CVE-2024-26146
Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack applications using Ruby 3.2 or newer are unaffected. This vulnerability is fixed in 2.0.9.4, 2.1.4.4, 2.2.8.1, and 3.0.9.1.
CVE-2024-26146
Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack applications using Ruby 3.2 or newer are unaffected. This vulnerability is fixed in 2.0.9.4, 2.1.4.4, 2.2.8.1, and 3.0.9.1.
CVE-2024-26146
Rack is a modular Ruby web server interface. Carefully crafted headers ...
GHSA-54rr-7fvw-6x8f
Rack Header Parsing leads to Possible Denial of Service Vulnerability
BDU:2024-01716
Уязвимость модуля Rack интерпретатора языка программирования Ruby, связанная с использованием регулярного выражения c неэффективной вычислительной сложностью, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2024:0946-1
Security update for rubygem-rack-1_4
SUSE-SU-2024:0765-1
Security update for rubygem-rack
ELSA-2024-2953
ELSA-2024-2953: pcs security update (MODERATE)
ELSA-2024-2113
ELSA-2024-2113: pcs security update (MODERATE)
ROS-20240508-01
Множественные уязвимости rubygem-rack
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-26146 Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack applications using Ruby 3.2 or newer are unaffected. This vulnerability is fixed in 2.0.9.4, 2.1.4.4, 2.2.8.1, and 3.0.9.1. | CVSS3: 5.3 | 1% Низкий | больше 1 года назад |
 | CVE-2024-26146 Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack applications using Ruby 3.2 or newer are unaffected. This vulnerability is fixed in 2.0.9.4, 2.1.4.4, 2.2.8.1, and 3.0.9.1. | CVSS3: 5.3 | 1% Низкий | больше 1 года назад |
 | CVE-2024-26146 Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack applications using Ruby 3.2 or newer are unaffected. This vulnerability is fixed in 2.0.9.4, 2.1.4.4, 2.2.8.1, and 3.0.9.1. | CVSS3: 5.3 | 1% Низкий | больше 1 года назад |
| CVE-2024-26146 Rack is a modular Ruby web server interface. Carefully crafted headers ... | CVSS3: 5.3 | 1% Низкий | больше 1 года назад |
| GHSA-54rr-7fvw-6x8f Rack Header Parsing leads to Possible Denial of Service Vulnerability | 1% Низкий | больше 1 года назад | |
 | BDU:2024-01716 Уязвимость модуля Rack интерпретатора языка программирования Ruby, связанная с использованием регулярного выражения c неэффективной вычислительной сложностью, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.3 | 1% Низкий | больше 1 года назад |
 | SUSE-SU-2024:0946-1 Security update for rubygem-rack-1_4 | больше 1 года назад | ||
| SUSE-SU-2024:0765-1 Security update for rubygem-rack | больше 1 года назад | ||
| ELSA-2024-2953 ELSA-2024-2953: pcs security update (MODERATE) | около 1 года назад | ||
| ELSA-2024-2113 ELSA-2024-2113: pcs security update (MODERATE) | около 1 года назад | ||
 | ROS-20240508-01 Множественные уязвимости rubygem-rack | CVSS3: 5.8 | около 1 года назад |
Уязвимостей на страницу