5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.067 Low
EPSS
Percentile
93.8%
Updated ruby-rack packages fix security vulnerability: lib/rack/utils.rb in Rack before 1.5.4 allows remote attackers to cause a denial of service (SystemStackError) via a request with a large parameter depth (CVE-2015-3225).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 4 | noarch | ruby-rack | < 1.5.2-5.1 | ruby-rack-1.5.2-5.1.mga4 |
Mageia | 5 | noarch | ruby-rack | < 1.5.2-7.1 | ruby-rack-1.5.2-7.1.mga5 |