File rubygem-rack-2.1.changes of Package rubygem-rack-2.1

-------------------------------------------------------------------
Fri Jun 21 10:27:39 UTC 2024 - Dan Čermák <dan.cermak@posteo.net>

- 2.1.4.4:

## What's Changed
* Fixed ReDoS in Accept header parsing [CVE-2024-26146]

**Full Changelog**: https://github.com/rack/rack/compare/v2.1.4.3...v2.1.4.4



-------------------------------------------------------------------
Fri Nov  3 07:51:30 UTC 2023 - Dan Čermák <dan.cermak@posteo.net>

- ## [2.1.4.3] - 2023-03-02

- [CVE-2023-27530] Introduce multipart_total_part_limit to limit total parts

## [2.1.4.2] - 2022-01-17

- [CVE-2022-44571] Fix ReDoS vulnerability in multipart parser
- [CVE-2022-44570] Fix ReDoS in Rack::Utils.get_byte_ranges
- [CVE-2022-44572] Forbid control characters in attributes (also ReDoS)


-------------------------------------------------------------------
Thu Aug  4 13:23:55 UTC 2022 - Stephan Kulow <coolo@suse.com>

updated to version 2.1.4.1
 see installed CHANGELOG.md

  ## [2.1.4.1] - 2022-05-27
  
  - [CVE-2022-30123] Fix shell escaping issue in Common Logger
  - [CVE-2022-30122] Restrict parsing of broken MIME attachments
  

-------------------------------------------------------------------
Mon Jun 22 08:52:57 UTC 2020 - Eduardo Navarro <enavarro@suse.com>

- initial package for version 2.1.4.
Places

File rubygem-rack-2.1.changes of Package rubygem-rack-2.1

Places
