Ubuntu Security Notice USN-5910-1
Ubuntu Security Notice 5910-1 - It was discovered that Rack did not
properly structure regular expressions in some of its parsing components,
which could result in uncontrolled resource consumption if an application
using Rack received specially crafted input. A remote attacker could
possibly use this issue to cause a denial of service. It was discovered
that Rack did not properly structure regular expressions in its multipart parsing component, which could result in uncontrolled resource consumption
if an application using Rack to parse multipart posts received specially crafted input. A remote attacker could possibly use this issue to cause a denial of service. This issue was only fixed in Ubuntu 20.04 ESM and
Ubuntu 22.04 ESM.
https://packetstormsecurity.com/files/171228/USN-5910-1.txt
Fri, 03 Mar 2023 15:45:22 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com (2:467/4.444)