projects / puma.git / log
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
puma.git
10 months agopuma (5.6.5-3+deb12u1) bookworm; urgency=medium
commit | commitdiff | tree
Abhijith PA [Wed, 29 Jan 2025 01:56:33 +0000 (07:26 +0530)]
puma (5.6.5-3+deb12u1) bookworm; urgency=medium

  * Team upload
  * d/patches/
   + CVE-2023-40175.patch: Fix CVE-2023-40175, incorrect behavior when
     parsing chunked transfer encoding bodies and zero-length
     Content-Length headers in a way that allowed HTTP request
     smuggling. (Closes: #1050079)

   + CVE-2024-21647.patch: Fix CVE-2024-21647 by limiting the size of
     chunk extensions. (Closes: #1060345)

   + CVE-2024-45614.patch: Fix CVE-2024-45614, clients could clobber
     values set by intermediate proxies (such as X-Forwarded-For) by
     providing a underscore version of the same header.
     (Closes: #1082379)

[dgit import unpatched puma 5.6.5-3+deb12u1]

10 months agoImport puma_5.6.5-3+deb12u1.debian.tar.xz
commit | commitdiff | tree
Abhijith PA [Wed, 29 Jan 2025 01:56:33 +0000 (07:26 +0530)]
Import puma_5.6.5-3+deb12u1.debian.tar.xz

[dgit import tarball puma 5.6.5-3+deb12u1 puma_5.6.5-3+deb12u1.debian.tar.xz]

3 years agoImport puma_5.6.5.orig.tar.gz
commit | commitdiff | tree
Pirate Praveen [Sun, 16 Oct 2022 17:14:46 +0000 (22:44 +0530)]
Import puma_5.6.5.orig.tar.gz

[dgit import orig puma_5.6.5.orig.tar.gz]

Unnamed repository; edit this file 'description' to name the repository.