Lucene search
K

4 matches found

OSV
OSV
added 2026/04/02 8:36 p.m.4 views

GHSA-Q2WW-5357-X388 Rack has Content-Length mismatch in Rack::Files error responses

Summary Rack::Filesfail sets the Content-Length response header using Stringsize instead of Stringbytesize. When the response body contains multibyte UTF-8 characters, the declared Content-Length is smaller than the number of bytes actually sent on the wire. Because Rack::Files reflects the...

4.8CVSS5.9AI score0.00147EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/02 8:36 p.m.11 views

Rack has Content-Length mismatch in Rack::Files error responses

Summary Rack::Filesfail sets the Content-Length response header using Stringsize instead of Stringbytesize. When the response body contains multibyte UTF-8 characters, the declared Content-Length is smaller than the number of bytes actually sent on the wire. Because Rack::Files reflects the...

6.5CVSS5.8AI score0.00147EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/12/15 11:6 a.m.3 views

OESA-2023-1910 python-twisted security update

Twisted is an event-based framework for internet applications, supporting Python 2.7 and Python 3.5+. It includes modules for many different purposes, including the following: Security Fixes: Twisted is an event-based framework for internet applications. Started with version 0.9.4, when the host...

5.4CVSS6.8AI score0.01156EPSS
Exploits1References2
OSV
OSV
added 2023/05/26 6:30 p.m.6 views

GHSA-XF96-W227-R7C4 Spring Boot Welcome Page Denial of Service

In Spring Boot versions 3.0.0 - 3.0.6, 2.7.0 - 2.7.11, 2.6.0 - 2.6.14, 2.5.0 - 2.5.14 and older unsupported versions, there is potential for a denial-of-service DoS attack if Spring MVC is used together with a reverse proxy cache. Specifically, an application is vulnerable if all of the condition...

7.5CVSS7.1AI score0.00904EPSS
Exploits0References9
Rows per page
Query Builder