2 matches found
PT-2013-1897 · Rack +1 · Rack +1
Name of the Vulnerable Software and Affected Versions: Rack versions 1.1.3 and earlier Rack versions 1.2.x through 1.2.5 Rack versions 1.3.x through 1.3.6 Rack versions 1.4.x through 1.4.1 Description: The issue is caused by an incorrect regular expression in lib/rack/multipart.rb, which allows...
GLSA-201203-05 : Rack: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201203-05 Rack: Denial of Service Rack does not properly randomize hash functions to protect against hash collision attacks. Impact : A remote attacker could send a specially crafted form post, possibly resulting in a Denial of...