File rubygem-rack-1_4-CVE-2024-26146.patch of Package rubygem-rack-1_4.33004

Index: rack-1.4.5/lib/rack/request.rb
===================================================================
--- rack-1.4.5.orig/lib/rack/request.rb
+++ rack-1.4.5/lib/rack/request.rb
@@ -296,8 +296,8 @@ module Rack
     end
 
     def accept_encoding
-      @env["HTTP_ACCEPT_ENCODING"].to_s.split(/\s*,\s*/).map do |part|
-        encoding, parameters = part.split(/\s*;\s*/, 2)
+      @env["HTTP_ACCEPT_ENCODING"].to_s.split(',').map do |part|
+        encoding, parameters = part.split(';', 2)
         quality = 1.0
         if parameters and /\Aq=([\d.]+)/ =~ parameters
           quality = $1.to_f

Places

File rubygem-rack-1_4-CVE-2024-26146.patch of Package rubygem-rack-1_4.33004

Places