Package "puma"

Name: puma


threaded HTTP 1.1 server for Ruby/Rack applications

Latest version: 5.6.5-3ubuntu1.1
Release: lunar (23.04)
Level: security
Repository: main
Homepage: https://puma.io


Download "puma"

Other versions of "puma" in Lunar

Repository Area Version
base main 5.6.5-3ubuntu1
updates main 5.6.5-3ubuntu1.1


Version: 5.6.5-3ubuntu1.1 2023-09-27 13:10:05 UTC

  puma (5.6.5-3ubuntu1.1) lunar-security; urgency=medium

  * SECURITY UPDATE: HTTP request smuggling issues
    - debian/patches/CVE-2023-40175.patch: fix parsing in
      lib/puma/client.rb, test/test_puma_server.rb.
    - CVE-2023-40175

 -- Marc Deslauriers <email address hidden> Fri, 22 Sep 2023 13:03:47 -0400

CVE-2023-40175 Puma is a Ruby/Rack web server built for parallelism. Prior to versions 6.3.1 and 5.6.7, puma exhibited incorrect behavior when parsing chunked trans

About   -   Send Feedback to @ubuntu_updates