File rubygem-rack-CVE-2023-27539.patch of Package rubygem-rack.28304

Index: rack-1.6.13/lib/rack/request.rb
===================================================================
--- rack-1.6.13.orig/lib/rack/request.rb
+++ rack-1.6.13/lib/rack/request.rb
@@ -380,8 +380,8 @@ module Rack
       end
 
       def parse_http_accept_header(header)
-        header.to_s.split(/\s*,\s*/).map do |part|
-          attribute, parameters = part.split(/\s*;\s*/, 2)
+        header.to_s.split(",").each(&:strip!).map do |part|
+          attribute, parameters = part.split(";", 2).each(&:strip!)
           quality = 1.0
           if parameters and /\Aq=([\d.]+)/ =~ parameters
             quality = $1.to_f

Places

File rubygem-rack-CVE-2023-27539.patch of Package rubygem-rack.28304

Places