Security: puma/puma
Security Advisories
View information about security vulnerabilities from this repository's maintainers.
-
Invalid parsing of chunked encoding in HTTP/1.1 allows DoS attacksGHSA-c2f4-cvqm-65w2 published
Jan 8, 2024 by nateberkopecModerate -
Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') in pumaGHSA-68xg-gqqm-vgj8 published
Aug 18, 2023 by nateberkopecModerate -
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in pumaGHSA-h99w-9q5r-gjq9 published
Mar 30, 2022 by nateberkopecModerate -
Information Exposure with Puma and RailsGHSA-rmj8-8hhh-gv5h published
Feb 11, 2022 by nateberkopecHigh -
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in pumaGHSA-48w2-rm65-62xx published
Oct 12, 2021 by nateberkopecLow -
Keepalive Connections Causing Denial Of Service in pumaGHSA-q28m-8xjw-8vr5 published
May 11, 2021 by nateberkopecHigh -
HTTP Smuggling via Transfer-Encoding HeaderGHSA-w64w-qqph-5gxm published
May 21, 2020 by nateberkopecModerate -
HTTP Smuggling via Transfer-Encoding HeaderGHSA-x7jg-6pwg-fx5h published
May 21, 2020 by nateberkopecModerate -
HTTP Response Splitting (Early Hints)GHSA-33vf-4xgg-9r58 published
Feb 28, 2020 by nateberkopecModerate -
Keepalive thread overload/DoSGHSA-7xx3-m584-x994 published
Dec 5, 2019 by nateberkopecModerate