Debian 9: DLA-3023-1 Important: Puma HTTP Splitting and DoS Threats
debian lts
May 25, 2022
Several security vulnerabilities have been discovered in puma, a web server for Ruby/Rack applications
Summary
We recommend that you upgrade your puma packages.
For the detailed security status of puma please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/puma
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
-------------------------------------------------------------------------Package: puma
Version: 3.6.0-1+deb9u2
CVE ID: CVE-2019-16770 CVE-2020-5247 CVE-2022-23634
Debian Bug: 946312 952766 1005391
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!