[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2024-0123":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":20,"duplicates":21,"related":22,"reserved_at":9,"published_at":26,"modified_at":27,"state":9,"summary":28,"references_raw":30,"kevs":42,"epss":9,"epss_history":43,"metrics":44,"affected":45},"MGASA-2024-0123","Updated ruby-rack packages fix security vulnerabilities\n\nCarefully crafted content type headers can cause Rack’s media type\nparser to take much longer than expected, leading to a possible denial\nof service vulnerability (ReDos 2nd degree polynomial). (CVE-2024-25126)\nCarefully crafted Range headers can cause a server to respond with an\nunexpectedly large response. Responding with such large responses could\nlead to a denial of service issue. Vulnerable applications will use the\n`Rack::File` middleware or the `Rack::Utils.byte_ranges` methods (this\nincludes Rails applications). (CVE-2024-26141)\nCarefully crafted headers can cause header parsing in Rack to take\nlonger than expected resulting in a possible denial of service issue.\nAccept and Forwarded headers are impacted. (CVE-2024-26146)\n",null,[],[],[],[14,16,18],{"_key":15},"CVE-2024-25126",{"_key":17},"CVE-2024-26141",{"_key":19},"CVE-2024-26146",[],[],[23,24,25],{"_key":15},{"_key":17},{"_key":19},"2024-04-12T20:45:19Z","2026-04-16T04:22:04.550435Z",{"cisa_kev":29,"cisa_ransomware":29,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[31,37],{"url":32,"sources":33,"tags":35},"https://advisories.mageia.org/MGASA-2024-0123.html",[34],"osv_mageia",[36],"Advisory",{"url":38,"sources":39,"tags":40},"https://bugs.mageia.org/show_bug.cgi?id=33075",[34],[41],"REPORT",[],[],[],[46],{"ecosystem":47,"name":48,"vendor":49,"product":48,"cpe_part":9,"purl_type":50,"purl_namespace":49,"purl_name":48,"source":9,"versions":51},"Mageia","ruby-rack","mageia","rpm",[52],{"version":53,"is_range":54,"range_type":55,"version_start":9,"version_start_type":9,"version_end":56,"version_end_type":57,"fixed_in":9},"lt2_2_8_1_1_mga9",true,"ecosystem","2.2.8.1-1.mga9","excluding"]