Sha256: b4bab157861305c29267aa3db243fbe1cc619fac5acefb476f568185f605448a

Contents?: true

Size: 525 Bytes

Versions: 5

Compression:

Stored size: 525 Bytes

Contents

---
gem: rack
cve: 2011-5036
osvdb: 78121
url: http://osvdb.org/show/osvdb/78121
title: |
  Rack Hash Collision Form Parameter Parsing Remote DoS
date: 2011-12-28

description: |
  Rack contains a flaw that may allow a remote denial of service. The issue is
  triggered when an attacker sends multiple crafted parameters which trigger
  hash collisions, and will result in loss of availability for the program via
  CPU consumption.

cvss_v2: 5.0
patched_versions:
  - "~> 1.1.3"
  - "~> 1.2.5"
  - "~> 1.3.6"
  - ">= 1.4.0"

Version data entries

5 entries across 5 versions & 2 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/rack/OSVDB-78121.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/rack/OSVDB-78121.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/rack/OSVDB-78121.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/rack/OSVDB-78121.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/rack/OSVDB-78121.yml