-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 02 May 2024 23:46:12 +0300 Source: ruby-rack Binary: ruby-rack Architecture: all Version: 2.1.4-3+deb11u2 Distribution: bullseye-security Urgency: medium Maintainer: all Build Daemon (x86-grnet-02) Changed-By: Adrian Bunk Description: ruby-rack - modular Ruby webserver interface Closes: 1064516 Changes: ruby-rack (2.1.4-3+deb11u2) bullseye-security; urgency=medium . * Non-maintainer upload. * CVE-2024-25126: ReDoS in Content Type header parsing * CVE-2024-26141: Reject Range headers which are too large * CVE-2024-26146: ReDoS in Accept header parsing * Closes: #1064516 Checksums-Sha1: ba9c1f08e09651705664f5d6244386a34d178c46 9566 ruby-rack_2.1.4-3+deb11u2_all-buildd.buildinfo fb5e419f47b22957c7591e0a9564abf8b28e044d 86368 ruby-rack_2.1.4-3+deb11u2_all.deb Checksums-Sha256: e193096dfb596a0d6773c3cedaeedf2132e02f4dc13c6f566aaf6b9534bf3836 9566 ruby-rack_2.1.4-3+deb11u2_all-buildd.buildinfo ba187de64f27303eb6d9c7d1c4747e3e997e2319a2dc8a05afe7477156bb7d54 86368 ruby-rack_2.1.4-3+deb11u2_all.deb Files: 3efe2997ab70b21002d00589d624d9f7 9566 ruby optional ruby-rack_2.1.4-3+deb11u2_all-buildd.buildinfo ab8bf5922ee856b8304b46bbe6bff109 86368 ruby optional ruby-rack_2.1.4-3+deb11u2_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEQsM0t1ygJv2xcx3e4cagXJhOTXsFAmZOQxIACgkQ4cagXJhO TXtRPhAArVG47dWbtuLeJf9s9AtXq/chAmCDhDeh+nuKWmv6KsdN3wTE2JvdRyxD c1yjHZO/RgOgYhmxJ2pgY1cODOAklrw1ixi0fZABbfnYhewmdlYh/3o/mQ7Y+hhL IFmoY+GV/liWITvG16l+G9i5MJOVOIprrAtYgZvSfALUJ2Vty1Pe9HdpFvemqn/T /OnuS6aLRvv3C8VTcUJvfAKIDbtSuN/iivpU8NAke9J6nomFnIiAMcuU44Rh3tAN CSkyTsVnjSNz6t/FD6N4QHFihbEM1rKv7U6YZsAuSurjo3J/GW/qPEAeVQQ92ghC kDdqhg1WSTMmc713ifKAsxPSn4mO4f9uhLzPxeLnqi/z0KcuYJ725XoGixcpVqGK qYKwrhIY6BdELO+eS6bSPRobqh5NVNiyY6Idiy8h/Ji16ImbiqAunPRBoDT4oXZ8 akeGt45Y/E32toPc+954MI+EuMfSRx5/AlfAWpPOv9Ub4DJbfhP4u6ww7KTbMnBf TwUW9JNL/y+zvnIysCeaytIIrA0/ezgAxWfA/K3TtZPslXvwPs93YRAqMeMMOGRb /5zEwmEGk0s3C+Xxx9fXSkjw996RSLQwmSBILbUvudRFDQPLLX94r7m1UxAJ2WXP Dk+gtapaX0IDPA3kVOBAzrK3riuI7dpRts82Lrb/BpGcQ8924L0= =6gp+ -----END PGP SIGNATURE-----