Package "ruby-webrick"

Name:	ruby-webrick
Description:	HTTP server toolkit in Ruby
Latest version:	1.7.0-3ubuntu0.1
Release:	jammy (22.04)
Level:	updates
Repository:	main
Homepage:	https://github.com/ruby/webrick

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "ruby-webrick"

All arch deb package

APT INSTALL

Other versions of "ruby-webrick" in Jammy

Repository	Area	Version
security	main	1.7.0-3ubuntu0.1

Changelog

Version: 1.7.0-3ubuntu0.1 2024-10-08 14:07:01 UTC

ruby-webrick (1.7.0-3ubuntu0.1) jammy-security; urgency=medium * SECURITY UPDATE: HTTP request smuggling via both a Content-Length header and a Transfer-Encoding header - debian/patches/CVE-2024-47220.patch: check for both headers in lib/webrick/httprequest.rb, test/webrick/test_httprequest.rb. - CVE-2024-47220 -- Marc Deslauriers <email address hidden> Fri, 04 Oct 2024 07:57:18 -0400

Source diff to previous version

CVE-2024-47220

An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and

Version: 1.7.0-3	2022-08-26 18:06:18 UTC
`ruby-webrick (1.7.0-3) unstable; urgency=medium * Add upstream commit to revert "Allow empty POST and PUT requests without content length". This was causing failures in ruby-httpclient testsuite. * Remove trailing space in a previous changelog entry -- Cédric Boutillier <email address hidden> Sun, 28 Nov 2021 14:56:56 +0100`

About - Send Feedback to @ubuntu_updates

Package "ruby-webrick"

Links

Download "ruby-webrick"

Other versions of "ruby-webrick" in Jammy

Changelog

Share this page

Bookmarks

Latest updates

updates

security

proposed

PPA updates