[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247768

 
 

909

 
 

194555

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-4247-1 ruby-rack-protection -- ruby-rack-protection

ID: oval:org.secpod.oval:def:603454Date: (C)2018-07-20   (M)2023-06-16
Class: PATCHFamily: unix




A timing attack was discovered in the function for CSRF token validation of the "Ruby rack protection" framework.

Platform:
Debian 9.x
Product:
ruby-rack-protection
Reference:
DSA-4247-1
CVE-2018-1000119
CVE    1
CVE-2018-1000119
CPE    2
cpe:/a:rack-protection_project:ruby-rack-protection
cpe:/o:debian:debian_linux:9.x

© SecPod Technologies