Name: rubygem-rack	Distribution: Fedora Project
Version: 3.2.3	Vendor: Fedora Project
Release: 2.fc44	Build date: Fri Oct 24 13:42:17 2025
Group: Unspecified	Build host: buildvm-ppc64le-32.rdu3.fedoraproject.org
Size: 293476	Source RPM: rubygem-rack-3.2.3-2.fc44.src.rpm
Packager: Fedora Project
Url: https://github.com/rack/rack
Summary: A modular Ruby webserver interface

Rack provides a minimal, modular and adaptable interface for developing
web applications in Ruby. By wrapping HTTP requests and responses in
the simplest way possible, it unifies and distills the API for web
servers, web frameworks, and software in between (the so-called
middleware) into a single method call.

Provides

Requires

License

MIT AND BSD-3-Clause

Changelog

* Mon Oct 13 2025 Vít Ondruch <vondruch@redhat.com> - 1:3.2.3-1
  - Update to Rack 3.2.3
    Resolves: rhbz#2385295
  - Rack QueryParser has an unsafe default allowing params_limit bypass via
    semicolon-separated parameters (CVE-2025-59830)
  - Unbounded read in `Rack::Request` form parsing can lead to memory exhaustion
    (CVE-2025-61919)
  - Improper handling of headers in `Rack::Sendfile` may allow proxy bypass
    (CVE-2025-61780)
* Fri Jul 25 2025 Fedora Release Engineering <releng@fedoraproject.org> - 1:3.1.16-2
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_43_Mass_Rebuild
* Thu Jul 10 2025 Vít Ondruch <vondruch@redhat.com> - 1:3.1.16-1
  - Update to Rack 3.1.16
    Resolves: rhbz#2124662
  - Denial of service in Content-Disposition parsing (CVE-2022-44571)
    Resolves: rhbz#2164714
    Resolves: rhbz#2164716
  - Denial of service in Content-Disposition parsing (CVE-2022-44570)
    Resolves: rhbz#2164719
    Resolves: rhbz#2164721
  - Denial of service in Content-Disposition parsing (CVE-2022-44572)
    Resolves: rhbz#2164722
    Resolves: rhbz#2164724
  - Denial of service in Multipart MIME parsing (CVE-2023-27530)
    Resolves: rhbz#2176477
    Resolves: rhbz#2176478
  - Denial of service in header parsing (CVE-2023-27539)
    Resolves: rhbz#2179649
    Resolves: rhbz#2179651
  - Denial of Service Vulnerability in Rack Content-Type Parsing (CVE-2024-25126)
    Resolves: rhbz#2265593
  - Possible DoS Vulnerability with Range Header in Rack (CVE-2024-26141)
    Resolves: rhbz#2265594
  - Possible Denial of Service Vulnerability in Rack Header Parsing (CVE-2024-26146)
    Resolves: rhbz#2265595
  - Possible Log Injection in Rack::CommonLogger (CVE-2025-25184)
    Resolves: rhbz#2345301
  - Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection (CVE-2025-27111)
    Resolves: rhbz#2349810
  - File Inclusion in Rack::Static (CVE-2025-27610)
    Resolves: rhbz#2351231
  - Unbounded-Parameter DoS in Rack::QueryParser (CVE-2025-46727)
    Resolves: rhbz#2364966
  - Rack Session Reuse Vulnerability (CVE-2025-32441). Current version
    actually extracts the affected code into rack-session package.
    Resolves: rhbz#2364965
* Sat Jan 18 2025 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.2.4-9
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Nov 20 2024 Mamoru TASAKA <mtasaka@fedoraproject.org> - 1:2.2.4-8
  - Backport upstream patch for ruby34 hash formatting change
  - Add dependency for rubygem(base64) explicitly
* Wed Sep 04 2024 Miroslav Suchý <msuchy@redhat.com> - 1:2.2.4-7
  - convert license to SPDX
* Fri Jul 19 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.2.4-6
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Fri Jan 26 2024 Fedora Release Engineering <releng@fedoraproject.org> - 1:2.2.4-5
  - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild

Files

/usr/share/gems/gems/rack-3.2.3
/usr/share/gems/gems/rack-3.2.3/MIT-LICENSE
/usr/share/gems/gems/rack-3.2.3/lib
/usr/share/gems/gems/rack-3.2.3/lib/rack
/usr/share/gems/gems/rack-3.2.3/lib/rack.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/auth
/usr/share/gems/gems/rack-3.2.3/lib/rack/auth/abstract
/usr/share/gems/gems/rack-3.2.3/lib/rack/auth/abstract/handler.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/auth/abstract/request.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/auth/basic.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/bad_request.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/body_proxy.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/builder.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/cascade.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/common_logger.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/conditional_get.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/config.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/constants.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/content_length.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/content_type.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/deflater.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/directory.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/etag.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/events.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/files.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/head.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/headers.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/lint.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/lock.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/media_type.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/method_override.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/mime.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/mock.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/mock_request.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/mock_response.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/multipart
/usr/share/gems/gems/rack-3.2.3/lib/rack/multipart.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/multipart/generator.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/multipart/parser.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/multipart/uploaded_file.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/null_logger.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/query_parser.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/recursive.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/reloader.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/request.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/response.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/rewindable_input.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/runtime.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/sendfile.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/show_exceptions.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/show_status.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/static.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/tempfile_reaper.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/urlmap.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/utils.rb
/usr/share/gems/gems/rack-3.2.3/lib/rack/version.rb
/usr/share/gems/specifications/rack-3.2.3.gemspec

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Oct 28 01:51:32 2025

rubygem-rack-3.2.3-2.fc44 RPM for noarch

From Fedora Rawhide for s390x / r

Provides

Requires

License

Changelog

Files