puma 5.6.5-3ubuntu1.2 source package in Ubuntu
Changelog
puma (5.6.5-3ubuntu1.2) lunar-security; urgency=medium
* SECURITY UPDATE: DoS via chunked transfer encoding body parsing
- debian/patches/CVE-2024-21647.patch: limit the size of chunk
extensions in lib/puma/client.rb, test/test_puma_server.rb.
- CVE-2024-21647
-- Marc Deslauriers <email address hidden> Tue, 23 Jan 2024 12:53:05 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Lunar
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Lunar | updates | main | misc | |
| Lunar | security | main | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| puma_5.6.5.orig.tar.gz | 307.6 KiB | 8c056fddcf3acefb4547bff3533741cd8e8a1b08c3ff0a60a5ec68f208b4659b |
| puma_5.6.5-3ubuntu1.2.debian.tar.xz | 14.1 KiB | f7ff1ca9ff374b11ccca07d9a69194477d9d41b8a20f8dd9371f786f3213934c |
| puma_5.6.5-3ubuntu1.2.dsc | 2.1 KiB | eec6efe3caf765921b779920925bb997761dccdcfd5988ef28dc20956a1f62e7 |
Available diffs
Binary packages built by this source
- puma: threaded HTTP 1.1 server for Ruby/Rack applications
Puma is a simple, fast, threaded, and highly concurrent HTTP 1.1 server for
Ruby/Rack applications. Puma is intended for use in both development and
production environments.
- puma-dbgsym: debug symbols for puma
