Explore top 10 tips to secure your open-source projects now. Read More
×
Rack could allow cross-site scripting (XSS) attacks.
Software Description:
- ruby-rack: modular Ruby webserver interface
Details:
It was discovered that Rack incorrectly handled carefully crafted requests. A
remote attacker could use this issue to execute a cross-site scripting (XSS)
attack.
The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: ruby-rack 1.6.4-4ubuntu0.1 Ubuntu 16.04 LTS: ruby-rack 1.6.4-3ubuntu0.1 In general, a standard system update will make all the necessary changes.
CVE-2018-16471
Get the latest Linux and open source security news straight to your inbox.