Subject: CVS commit: pkgsrc/www/ruby-rack
From: Takahiro Kambe
Date: 2024-02-24 15:24:12
Message id: 20240224142412.9F525F9F4@cvs.NetBSD.org
Log Message:
www/ruby-rack: update to 3.0.9.1

3.0.9.1 (2024-02-21)

What's Changed

* Fixed ReDoS in Accept header parsing [CVE-2024-26146]
* Fixed ReDoS in Content Type header parsing [CVE-2024-25126]
* Reject Range headers which are too large [CVE-2024-26141]
Files:
RevisionActionfile
1.39modifypkgsrc/www/ruby-rack/Makefile
1.37modifypkgsrc/www/ruby-rack/distinfo