testing

rubygem-rack-3.1.19-1.fc43

FEDORA-2025-b6e0f437b6 created by vondruch a week ago for Fedora 43

Update to Rack 3.1.19

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --enablerepo=updates-testing --refresh --advisory=FEDORA-2025-b6e0f437b6

This update has been submitted for testing by vondruch.

a week ago

This update's test gating status has been changed to 'ignored'.

a week ago

This update has been pushed to testing.

6 days ago

Please log in to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Thresholds
Minimum Karma
+1
Minimum Testing
7 days
Dates
submitted
a week ago
in testing
6 days ago
days to stable
1
Builds
1
rubygem-rack-3.1.19-1.fc43
BZ#2402174 CVE-2025-61770 rack: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
0
0
BZ#2402175 CVE-2025-61771 rack: Rack's multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
0
0
BZ#2402200 CVE-2025-61772 rack: Rack memory exhaustion denial of service
0
0
BZ#2403126 CVE-2025-61780 rubygem-rack: Improper handling of headers in `Rack::Sendfile` may allow proxy bypass
0
0
BZ#2403180 CVE-2025-61919 rubygem-rack: Unbounded read in `Rack::Request` form parsing can lead to memory exhaustion
0
0
rubygem-rack-3.1.19-1.fc43

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-10-5kvt6.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy