Debian Package Tracker
Register | Log in
Subscribe

ruby-webrick

HTTP server toolkit in Ruby

Choose email to subscribe with

general
  • source: ruby-webrick (main)
  • version: 1.9.1-1
  • maintainer: Debian Ruby Team (archive) (DMD)
  • uploaders: Cédric Boutillier [DMD]
  • arch: all
  • std-ver: 4.6.2
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • old-bpo: 1.7.0-3~bpo11+2
  • stable: 1.8.1-1
  • testing: 1.9.1-1
  • unstable: 1.9.1-1
versioned links
  • 1.7.0-3~bpo11+2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 1.8.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 1.9.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • ruby-webrick
action needed
1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:
  • CVE-2024-47220: (needs triaging) An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."

You can find information about how to handle this issue in the security team's documentation.

Created: 2024-09-22 Last update: 2025-04-24 14:00
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.6.2).
Created: 2024-04-07 Last update: 2025-03-15 06:27
news
[rss feed]
  • [2025-03-17] ruby-webrick 1.9.1-1 MIGRATED to testing (Debian testing watch)
  • [2025-03-14] Accepted ruby-webrick 1.9.1-1 (source) into unstable (Hans-Christoph Steiner)
  • [2023-02-13] ruby-webrick 1.8.1-1 MIGRATED to testing (Debian testing watch)
  • [2023-02-09] Accepted ruby-webrick 1.7.0-3~bpo11+2 (source all) into bullseye-backports (Debian FTP Masters) (signed by: Utkarsh Gupta)
  • [2023-02-08] Accepted ruby-webrick 1.8.1-1 (source) into unstable (Cédric Boutillier)
  • [2022-09-15] ruby-webrick 1.7.0-4 MIGRATED to testing (Debian testing watch)
  • [2022-09-11] Accepted ruby-webrick 1.7.0-4 (source) into unstable (Antonio Terceiro)
  • [2021-12-01] ruby-webrick 1.7.0-3 MIGRATED to testing (Debian testing watch)
  • [2021-11-28] Accepted ruby-webrick 1.7.0-3 (source) into unstable (Cédric Boutillier)
  • [2021-11-19] ruby-webrick 1.7.0-2 MIGRATED to testing (Debian testing watch)
  • [2021-11-17] Accepted ruby-webrick 1.7.0-2 (source) into unstable (Cédric Boutillier)
  • [2021-10-15] Accepted ruby-webrick 1.7.0-1 (source all) into unstable, unstable (Debian FTP Masters) (signed by: Cédric Boutillier)
bugs [bug history graph]
  • all: 0
links
  • homepage
  • lintian
  • buildd: logs, reproducibility
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • screenshots
  • debci
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 1.9.1-1

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing