issues Search Results · repo:ruby/webrick language:Ruby
Filter by
50 results
(75 ms)50 results
inruby/webrick (press backspace or delete to remove)The change introduced in #138 disallows bare LFs in headers and request lines. This change is good, but it also affects
CGIHandler, causing scripts that use bare LF as a header separator to fail. However, ...
paulownia
- 3
- Opened 2 days ago
- #165
/usr/home/zennix/.local/share/gem/ruby/3.3/gems/webrick-1.8.2/lib/webrick/server.rb:89:in `update : no implicit conversion of String into Hash (TypeError)
@config = default.dup.update(config)
...
z3nnix
- 1
- Opened on Sep 30, 2024
- #150
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing
both a Content-Length header and a Transfer-Encoding header, e.g., GET /admin HTTP/1.1\r\n ...
guiferrpereira
- 2
- Opened on Sep 24, 2024
- #148
ruby-advisory-db: advisories: 929 advisories last updated: 2024-09-23 17:01:50 -0700
commit: 77ef7ef86907a822e43a8eabe0baa2a57d4ac1e1 Name: webrick Version: 1.8.2 CVE: CVE-2024-47220 GHSA:
GHSA-6f62-3596-g6w7 ...
kan-datawow
- Opened on Sep 24, 2024
- #147
The vulnerability happens because the server doesn t correctly handle requests with both Content-Length and
Transfer-Encoding headers. This allows an attacker to sneak in an extra request (e.g., GET /admin) ...
JulianWu520
- 12
- Opened on Sep 18, 2024
- #145
When WEBrick receives a request with no message body that is missing the final CRLF pair after the headers, and then the
connection is closed for writing by the client, WEBrick responds to the request ...
kenballus
- Opened on Jul 4, 2024
- #140
When WEBrick receives a request with \x0b or \x0c on either side of a header value, it strips those characters off
before processing the header. While header values should be whitespace stripped, the RFC ...
- Opened on Jul 4, 2024
- #139
WEBrick allows CR (\r) within header values. RFC 9110 says not to do this: Field values containing CR, LF, or NUL
characters are invalid and dangerous, due to the varying ways that implementations might ...
- 1
- Opened on Jun 25, 2024
- #137
When WEBrick receives a request with a chunked message body with a chunk length that s less than the length of the
subsequent data, it silently ignores extra the extra data.
For example, if you send WEBrick ...
- Opened on Jun 21, 2024
- #133
I can t find official documentation for Webrick online. If this documentation exists, can the README be updated with a
link, since this repository does come up in searches?
MatthiasPortzel
- 1
- Opened on Dec 19, 2023
- #127
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.