Information on source package ruby-sinatra

Available versions

ReleaseVersion
jessie1.4.5-1
stretch1.4.7-5+deb9u2
buster2.0.5-4+deb10u2
bullseye2.0.8.1-2
bullseye (security)2.0.8.1-2+deb11u1
bookworm3.0.5-3
trixie3.2.0-1
sid3.2.0-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-21510vulnerablevulnerablevulnerablevulnerablevulnerable (no DSA, ignored)vulnerablevulnerableVersions of the package sinatra from 0.0.0 are vulnerable to Reliance ...
CVE-2022-45442vulnerablefixedfixedfixedfixedfixedfixedSinatra is a domain-specific language for creating web applications in ...
CVE-2022-29970vulnerablefixedfixedfixedfixedfixedfixedSinatra before 2.2.0 does not validate that the expanded path matches ...

Resolved issues

BugDescription
CVE-2018-11627Sinatra before 2.0.2 has XSS via the 400 Bad Request page that occurs ...

Security announcements

DSA / DLADescription
DLA-3877-1ruby-sinatra - security update
ELA-787-1ruby-sinatra - security update
DLA-3264-1ruby-sinatra - security update
DLA-3166-1ruby-sinatra - security update
ELA-638-1ruby-sinatra - security update

Search for package or bug name: Reporting problems