ELA-787-1 ruby-sinatra security update

Debian 9918 Published 2023-01-31 07:37 by Philipp Esselbach

News

A ruby-sinatra security update has been released for Debian GNU/Linux 9 Extended LTS to address a vulnerability where a reflected file download (RFD) attack sets the Content-Disposition header of a response when the filename is derived from user-supplied input.

ELA-787-1 ruby-sinatra security update

Package : ruby-sinatra
Version : 1.4.7-5+deb9u2 (stretch)

Related CVEs :
CVE-2022-45442

Sinatra is a domain-specific language for creating web applications in Ruby. An application is vulnerable to a reflected file download (RFD) attack that sets the Content-Disposition header of a response when the filename is derived from user-supplied input.
ELA-787-1 ruby-sinatra security update

USN-5811-3: Sudo vulnerability

MSI MEG X670E ACE Motherboard Review and more

Windows

Software 42323
Winpilot 2024.5.5 released
2024-05-03 14:38 by Philipp Esselbach
Software 42323
Winpilot 2024.5.4 released
2024-04-30 17:49 by Philipp Esselbach
Software 42323
WSL2 Distro Manager 1.8.13 released
2024-04-29 07:43 by Philipp Esselbach

Linux

KDE 1462
KDE neon 20240502 released
2024-05-03 09:44 by Philipp Esselbach
Software 42323
AM 6.7 released
2024-05-03 09:01 by Philipp Esselbach
Debian 9918
Liquorix Linux Kernel 6.8-10 released
2024-05-03 08:52 by Philipp Esselbach

macOS

Apple 10164
iOS 17.5 and iPadOS 17.5 Beta 4 released
2024-05-01 07:10 by Philipp Esselbach
Apple 10164
macOS Sonoma 14.5 Beta 4 released
2024-05-01 07:10 by Philipp Esselbach
Apple 10164
watchOS 10.5 Beta 4 released
2024-05-01 07:10 by Philipp Esselbach

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...