ELA-638-1 ruby-sinatra security update

Debian 9924 Published 2022-07-13 05:00 by Philipp Esselbach

News

A ruby-sinatra security update has been released for Debian GNU/Linux 9 Extended LTS.

ELA-638-1 ruby-sinatra security update

Package ruby-sinatra
Version 1.4.7-5+deb9u1 (stretch)
Related CVEs CVE-2022-29970

A file traversal vulnerability was discovered in ruby-sinatra, a popular web server often used with Ruby on Rails. We now validate that any expanded paths match the allowed public_dir when serving static files.

For Debian 9 stretch, these problems have been fixed in version 1.4.7-5+deb9u1.

We recommend that you upgrade your ruby-sinatra packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/
ELA-638-1 ruby-sinatra security update

USN-5510-2: X.Org X Server vulnerabilities

Azure SDK Release (July 2022)

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...

ELA-638-1 ruby-sinatra security update

Windows

Linux

macOS

Community