Lucene search
K

rubygem-rack: Unbounded-Parameter DoS in Rack::QueryParser

šŸ—“ļøĀ 29 May 2025Ā 06:28:46Reported byĀ RedHatTypeĀ 
redhat
Ā redhat
šŸ”—Ā access.redhat.comšŸ‘Ā 9Ā Views

Flaw in Rack::QueryParser causes denial of service from oversized requests with many parameters, exhausting memory.

Related
Packages
Refs
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux9.4aarch64pcs0:0.11.7-2.el9_4.4pcs-0:0.11.7-2.el9_4.4.aarch64.rpm
Red Hat Enterprise Linux9.4ppc64lepcs0:0.11.7-2.el9_4.4pcs-0:0.11.7-2.el9_4.4.ppc64le.rpm
Red Hat Enterprise Linux9.4s390xpcs0:0.11.7-2.el9_4.4pcs-0:0.11.7-2.el9_4.4.s390x.rpm
Red Hat Enterprise Linux9.4x86_64pcs0:0.11.7-2.el9_4.4pcs-0:0.11.7-2.el9_4.4.x86_64.rpm
Red Hat Enterprise Linux9.4aarch64pcs-snmp0:0.11.7-2.el9_4.4pcs-snmp-0:0.11.7-2.el9_4.4.aarch64.rpm
Red Hat Enterprise Linux9.4ppc64lepcs-snmp0:0.11.7-2.el9_4.4pcs-snmp-0:0.11.7-2.el9_4.4.ppc64le.rpm
Red Hat Enterprise Linux9.4s390xpcs-snmp0:0.11.7-2.el9_4.4pcs-snmp-0:0.11.7-2.el9_4.4.s390x.rpm
Red Hat Enterprise Linux9.4x86_64pcs-snmp0:0.11.7-2.el9_4.4pcs-snmp-0:0.11.7-2.el9_4.4.x86_64.rpm

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

11 Jul 2026 20:05Current
6.7Medium risk
Vulners AI Score6.7
CVSS 3.17.5
EPSS0.00911
SSVC
9