[ubuntu/oracular-proposed] ruby-webrick 1.8.1-1ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Fri Oct 4 12:20:45 UTC 2024 

ruby-webrick (1.8.1-1ubuntu1) oracular; urgency=medium

  * SECURITY UPDATE: HTTP request smuggling via both a Content-Length
    header and a Transfer-Encoding header
    - debian/patches/CVE-2024-47220.patch: check for both headers in
      lib/webrick/httprequest.rb, test/webrick/test_httprequest.rb.
    - CVE-2024-47220

Date: Fri, 04 Oct 2024 07:54:03 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/ruby-webrick/1.8.1-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 04 Oct 2024 07:54:03 -0400
Source: ruby-webrick
Built-For-Profiles: noudeb
Architecture: source
Version: 1.8.1-1ubuntu1
Distribution: oracular
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 ruby-webrick (1.8.1-1ubuntu1) oracular; urgency=medium
 .
   * SECURITY UPDATE: HTTP request smuggling via both a Content-Length
     header and a Transfer-Encoding header
     - debian/patches/CVE-2024-47220.patch: check for both headers in
       lib/webrick/httprequest.rb, test/webrick/test_httprequest.rb.
     - CVE-2024-47220
Checksums-Sha1:
 3988808943cccdc0062509dd605f52b21221d9ac 2113 ruby-webrick_1.8.1-1ubuntu1.dsc
 91c3c56ab0f9cf911490df29b61581846233c17a 4676 ruby-webrick_1.8.1-1ubuntu1.debian.tar.xz
 7b74826ef902bb388bc146620adef5adf6a3d3ce 10064 ruby-webrick_1.8.1-1ubuntu1_source.buildinfo
Checksums-Sha256:
 65b35da0e3eaae755fa78c3bba7d1923081e9195fc67ace5fdf62880b1afb2e6 2113 ruby-webrick_1.8.1-1ubuntu1.dsc
 70f4c86ee9e1da3a0cdfc04873ceedc070acf76c6ebe891d737302a5625b1cfa 4676 ruby-webrick_1.8.1-1ubuntu1.debian.tar.xz
 68c44213fb60bac70be6e092eee9bd8b6d7030252728c33b14314f980a18171f 10064 ruby-webrick_1.8.1-1ubuntu1_source.buildinfo
Files:
 13d6be5a16e5f00840607a330e552ab1 2113 ruby optional ruby-webrick_1.8.1-1ubuntu1.dsc
 e868a411811d6200c783b444a6e3be53 4676 ruby optional ruby-webrick_1.8.1-1ubuntu1.debian.tar.xz
 4e3908ab96962b622c85d90982329ce1 10064 ruby optional ruby-webrick_1.8.1-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Ruby Team <pkg-ruby-extras-maintainers at lists.alioth.debian.org>

More information about the oracular-changes mailing list