You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: CHANGELOG.md
+6
Original file line number
Diff line number
Diff line change
@@ -2,6 +2,12 @@
2
2
3
3
All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference [Keep A Changelog](https://keepachangelog.com/en/1.0.0/).
4
4
5
+
## [2.2.6.1] - 2022-01-17
6
+
7
+
-[CVE-2022-44571] Fix ReDoS vulnerability in multipart parser
8
+
-[CVE-2022-44570] Fix ReDoS in Rack::Utils.get_byte_ranges
9
+
-[CVE-2022-44572] Forbid control characters in attributes (also ReDoS)
10
+
5
11
## [2.2.6] - 2022-01-17
6
12
7
13
- Extend `Rack::MethodOverride` to handle `QueryParser::ParamsTooDeepError` error. ([#2011](https://github.com/rack/rack/pull/2011), [@byroot](https://github.com/byroot))
0 commit comments