Package: ruby-rack-ssl / 1.3.2-4

Metadata

Package Version Patches format
ruby-rack-ssl 1.3.2-4 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 Handle bad URIs gracefully.patch | (download)

lib/rack/ssl.rb | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 [patch] handle bad uris gracefully.

Some adapters (i.e. jruby-rack) will pass through bad URIs, then display
the resulting exception. This creates an attack vector for XSS attacks.

[Refreshed for 1.3.x, remove test as 1.3.x has no tests. -zeha@d.o.]