Lucene search
DebianDEBIAN:DLA-254-1:8E17AHistoryJun 26, 2015 - 7:37 a.m.
[SECURITY] [DLA 254-1] librack-ruby security update
2015-06-2607:37:36
lists.debian.org
7
0.067 Low
EPSS
Percentile
93.8%
Package : librack-ruby
Version : 1.1.0-4+squeeze3
CVE ID : CVE-2015-3225
There is a potential denial of service vulnerability in Rack, a modular
Ruby webserver interface.
Carefully crafted requests can cause a SystemStackError and cause a
denial of service attack by exploiting the lack of a sensible depth
check when doing parameter normalization.
We recommend that you update your librack-ruby packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 6 | all | librack-ruby | < 1.1.0-4+squeeze3 | librack-ruby_1.1.0-4+squeeze3_all.deb |
| Debian | 6 | all | librack-ruby1.9.1 | < 1.1.0-4+squeeze3 | librack-ruby1.9.1_1.1.0-4+squeeze3_all.deb |
| Debian | 6 | all | librack-ruby1.8 | < 1.1.0-4+squeeze3 | librack-ruby1.8_1.1.0-4+squeeze3_all.deb |
Related
osv
osv
librack-ruby - security update
2015-06-26 00:00:00
Rack vulnerable to Denial of Service via large parameter depth request
2017-10-24 18:33:36
ubuntucve
ubuntucve
CVE-2015-3225
2015-07-26 00:00:00
cve
cve
CVE-2015-3225
2015-07-26 22:59:04
redhat
redhat
(RHSA-2015:2290) Moderate: pcs security, bug fix, and enhancement update
2015-11-19 13:33:03
nessus
nessus
Debian DLA-254-1 : librack-ruby security update
2015-06-26 00:00:00
openSUSE Security Update : rubygem-rack-1_3 (openSUSE-2015-499)
2015-07-20 00:00:00
Fedora 22 : rubygem-rack-1.6.1-2.fc22 (2015-12978)
2015-08-20 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: rubygem-rack-1.6.1-2.fc22
2015-08-19 08:09:24
[SECURITY] Fedora 21 Update: rubygem-rack-1.5.2-5.fc21
2015-08-27 23:52:36
securityvulns
securityvulns
[SECURITY] [DSA 3322-1] ruby-rack security update
2015-08-24 00:00:00
cvelist
cvelist
CVE-2015-3225
2015-07-26 22:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:2190-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-254-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3322-1 (ruby-rack - security update)
2015-07-31 00:00:00
debian
debian
[SECURITY] [DSA 3322-1] ruby-rack security update
2015-07-31 19:50:41
[SECURITY] [DSA 3322-1] ruby-rack security update
2015-07-31 19:50:41
mageia
mageia
Updated ruby-rack packages fix CVE-2015-3225
2015-09-08 20:55:59
centos
centos
pcs security update
2015-11-30 19:47:22
github
github
Rack vulnerable to Denial of Service via large parameter depth request
2017-10-24 18:33:36
prion
prion
Design/Logic Flaw
2015-07-26 22:59:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:08:29
debiancve
debiancve
CVE-2015-3225
2015-07-26 22:59:04
freebsd
freebsd
rubygem-rails -- multiple vulnerabilities
2015-06-16 00:00:00