Fluid Attacks Database

Description

HTTP response splitting in CGI Ruby gem cgi.rb prior to versions 0.3.5, 0.2.2 and 0.1.0.2 allow HTTP header injection. If a CGI application using the CGI library inserts untrusted input into the HTTP response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. This issue has been patched in versions 0.3.5, 0.2.2 and 0.1.0.2.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	ruby2.7	=2.7.4-1 \|\| =2.7.4-1+deb11u1 \|\| >=0 <2.7.4-1+deb11u2	2.7.4-1+deb11u2
alpine v3.21	ruby	>=0 <3.1.3-r0	3.1.3-r0
rubygems	cgi	>=0.3.0 <0.3.5 \|\| >=0.2.0 <0.2.2 \|\| >=0 <0.1.0.2	0.3.5, 0.2.2, 0.1.0.2
alpine v3.22	ruby	>=0 <3.1.3-r0	3.1.3-r0
alpine v3.14	ruby	=1.8.7_p160-r2 \|\| =1.8.7_p160-r3 \|\| =1.8.7_p174-r0 \|\| =1.8.7_p174-r1 \|\| =1.8.7_p174-r2 \|\| =1.8.7_p174-r3 \|\| =1.8.7_p174-r4 \|\| =1.8.7_p174-r6 \|\| =1.8.7_p174-r7 \|\| =1.8.7_p299-r0 \|\| =1.8.7_p299-r1 \|\| =1.8.7_p299-r2 \|\| =1.8.7_p352-r0 \|\| =1.8.7_p352-r1 \|\| =1.8.7_p358-r1 \|\| =1.8.7_p72-r1 \|\| =1.8.7_p72-r2 \|\| =1.9.3_p194-r0 \|\| =1.9.3_p286-r0 \|\| =1.9.3_p286-r1 \|\| =1.9.3_p286-r2 \|\| =1.9.3_p327-r0 \|\| =1.9.3_p362-r0 \|\| =1.9.3_p374-r0 \|\| =1.9.3_p385-r0 \|\| =1.9.3_p392-r0 \|\| =2.0.0_p0-r0 \|\| =2.0.0_p0-r1 \|\| =2.0.0_p195-r0 \|\| =2.0.0_p247-r0 \|\| =2.0.0_p247-r1 \|\| =2.0.0_p247-r2 \|\| =2.0.0_p247-r3 \|\| =2.0.0_p353-r0 \|\| =2.0.0_p353-r1 \|\| =2.0.0_p353-r2 \|\| =2.0.0_p481-r0 \|\| =2.1.5-r0 \|\| =2.1.5-r1 \|\| =2.2.1-r0 \|\| =2.2.2-r0 \|\| =2.2.2-r1 \|\| =2.2.3-r0 \|\| =2.2.3-r1 \|\| =2.2.4-r0 \|\| =2.3.1-r0 \|\| =2.3.1-r1 \|\| =2.3.1-r2 \|\| =2.3.2-r0 \|\| =2.3.3-r0 \|\| =2.3.3-r1 \|\| =2.3.3-r2 \|\| =2.3.3-r3 \|\| =2.4.0-r3 \|\| =2.4.1-r1 \|\| =2.4.1-r2 \|\| =2.4.1-r3 \|\| =2.4.1-r4 \|\| =2.4.1-r5 \|\| =2.4.2-r0 \|\| =2.4.2-r1 \|\| =2.4.3-r0 \|\| =2.5.0-r0 \|\| =2.5.0-r1 \|\| =2.5.1-r0 \|\| =2.5.1-r1 \|\| =2.5.1-r2 \|\| =2.5.2-r0 \|\| =2.5.3-r0 \|\| =2.5.3-r1 \|\| =2.5.3-r2 \|\| =2.5.5-r0 \|\| =2.6.3-r0 \|\| =2.6.3-r1 \|\| =2.6.3-r2 \|\| =2.6.4-r0 \|\| =2.6.5-r0 \|\| =2.6.5-r1 \|\| =2.6.5-r2 \|\| =2.6.6-r2 \|\| =2.6.6-r3 \|\| =2.6.6-r4 \|\| =2.7.1-r0 \|\| =2.7.1-r1 \|\| =2.7.1-r2 \|\| =2.7.1-r3 \|\| =2.7.1-r4 \|\| =2.7.1-r5 \|\| =2.7.2-r0 \|\| =2.7.2-r1 \|\| =2.7.2-r2 \|\| =2.7.2-r3 \|\| =2.7.2-r4 \|\| =2.7.3-r0 \|\| =2.7.3-r1 \|\| =2.7.4-r0 \|\| =2.7.5-r0 \|\| =2.7.6-r0 \|\| >=0 <2.7.7-r0	2.7.7-r0
alpine v3.15	ruby	=1.8.7_p160-r2 \|\| =1.8.7_p160-r3 \|\| =1.8.7_p174-r0 \|\| =1.8.7_p174-r1 \|\| =1.8.7_p174-r2 \|\| =1.8.7_p174-r3 \|\| =1.8.7_p174-r4 \|\| =1.8.7_p174-r6 \|\| =1.8.7_p174-r7 \|\| =1.8.7_p299-r0 \|\| =1.8.7_p299-r1 \|\| =1.8.7_p299-r2 \|\| =1.8.7_p352-r0 \|\| =1.8.7_p352-r1 \|\| =1.8.7_p358-r1 \|\| =1.8.7_p72-r1 \|\| =1.8.7_p72-r2 \|\| =1.9.3_p194-r0 \|\| =1.9.3_p286-r0 \|\| =1.9.3_p286-r1 \|\| =1.9.3_p286-r2 \|\| =1.9.3_p327-r0 \|\| =1.9.3_p362-r0 \|\| =1.9.3_p374-r0 \|\| =1.9.3_p385-r0 \|\| =1.9.3_p392-r0 \|\| =2.0.0_p0-r0 \|\| =2.0.0_p0-r1 \|\| =2.0.0_p195-r0 \|\| =2.0.0_p247-r0 \|\| =2.0.0_p247-r1 \|\| =2.0.0_p247-r2 \|\| =2.0.0_p247-r3 \|\| =2.0.0_p353-r0 \|\| =2.0.0_p353-r1 \|\| =2.0.0_p353-r2 \|\| =2.0.0_p481-r0 \|\| =2.1.5-r0 \|\| =2.1.5-r1 \|\| =2.2.1-r0 \|\| =2.2.2-r0 \|\| =2.2.2-r1 \|\| =2.2.3-r0 \|\| =2.2.3-r1 \|\| =2.2.4-r0 \|\| =2.3.1-r0 \|\| =2.3.1-r1 \|\| =2.3.1-r2 \|\| =2.3.2-r0 \|\| =2.3.3-r0 \|\| =2.3.3-r1 \|\| =2.3.3-r2 \|\| =2.3.3-r3 \|\| =2.4.0-r3 \|\| =2.4.1-r1 \|\| =2.4.1-r2 \|\| =2.4.1-r3 \|\| =2.4.1-r4 \|\| =2.4.1-r5 \|\| =2.4.2-r0 \|\| =2.4.2-r1 \|\| =2.4.3-r0 \|\| =2.5.0-r0 \|\| =2.5.0-r1 \|\| =2.5.1-r0 \|\| =2.5.1-r1 \|\| =2.5.1-r2 \|\| =2.5.2-r0 \|\| =2.5.3-r0 \|\| =2.5.3-r1 \|\| =2.5.3-r2 \|\| =2.5.5-r0 \|\| =2.6.3-r0 \|\| =2.6.3-r1 \|\| =2.6.3-r2 \|\| =2.6.4-r0 \|\| =2.6.5-r0 \|\| =2.6.5-r1 \|\| =2.6.5-r2 \|\| =2.6.6-r2 \|\| =2.6.6-r3 \|\| =2.6.6-r4 \|\| =2.7.1-r0 \|\| =2.7.1-r1 \|\| =2.7.1-r2 \|\| =2.7.1-r3 \|\| =2.7.1-r4 \|\| =2.7.1-r5 \|\| =2.7.2-r0 \|\| =2.7.2-r1 \|\| =2.7.2-r2 \|\| =2.7.2-r3 \|\| =2.7.2-r4 \|\| =2.7.3-r0 \|\| =2.7.3-r1 \|\| =2.7.4-r0 \|\| =2.7.4-r1 \|\| =2.7.4-r2 \|\| =3.0.2-r0 \|\| =3.0.3-r0 \|\| =3.0.4-r0 \|\| >=0 <3.0.5-r0	3.0.5-r0
alpine v3.16	ruby	=1.8.7_p160-r2 \|\| =1.8.7_p160-r3 \|\| =1.8.7_p174-r0 \|\| =1.8.7_p174-r1 \|\| =1.8.7_p174-r2 \|\| =1.8.7_p174-r3 \|\| =1.8.7_p174-r4 \|\| =1.8.7_p174-r6 \|\| =1.8.7_p174-r7 \|\| =1.8.7_p299-r0 \|\| =1.8.7_p299-r1 \|\| =1.8.7_p299-r2 \|\| =1.8.7_p352-r0 \|\| =1.8.7_p352-r1 \|\| =1.8.7_p358-r1 \|\| =1.8.7_p72-r1 \|\| =1.8.7_p72-r2 \|\| =1.9.3_p194-r0 \|\| =1.9.3_p286-r0 \|\| =1.9.3_p286-r1 \|\| =1.9.3_p286-r2 \|\| =1.9.3_p327-r0 \|\| =1.9.3_p362-r0 \|\| =1.9.3_p374-r0 \|\| =1.9.3_p385-r0 \|\| =1.9.3_p392-r0 \|\| =2.0.0_p0-r0 \|\| =2.0.0_p0-r1 \|\| =2.0.0_p195-r0 \|\| =2.0.0_p247-r0 \|\| =2.0.0_p247-r1 \|\| =2.0.0_p247-r2 \|\| =2.0.0_p247-r3 \|\| =2.0.0_p353-r0 \|\| =2.0.0_p353-r1 \|\| =2.0.0_p353-r2 \|\| =2.0.0_p481-r0 \|\| =2.1.5-r0 \|\| =2.1.5-r1 \|\| =2.2.1-r0 \|\| =2.2.2-r0 \|\| =2.2.2-r1 \|\| =2.2.3-r0 \|\| =2.2.3-r1 \|\| =2.2.4-r0 \|\| =2.3.1-r0 \|\| =2.3.1-r1 \|\| =2.3.1-r2 \|\| =2.3.2-r0 \|\| =2.3.3-r0 \|\| =2.3.3-r1 \|\| =2.3.3-r2 \|\| =2.3.3-r3 \|\| =2.4.0-r3 \|\| =2.4.1-r1 \|\| =2.4.1-r2 \|\| =2.4.1-r3 \|\| =2.4.1-r4 \|\| =2.4.1-r5 \|\| =2.4.2-r0 \|\| =2.4.2-r1 \|\| =2.4.3-r0 \|\| =2.5.0-r0 \|\| =2.5.0-r1 \|\| =2.5.1-r0 \|\| =2.5.1-r1 \|\| =2.5.1-r2 \|\| =2.5.2-r0 \|\| =2.5.3-r0 \|\| =2.5.3-r1 \|\| =2.5.3-r2 \|\| =2.5.5-r0 \|\| =2.6.3-r0 \|\| =2.6.3-r1 \|\| =2.6.3-r2 \|\| =2.6.4-r0 \|\| =2.6.5-r0 \|\| =2.6.5-r1 \|\| =2.6.5-r2 \|\| =2.6.6-r2 \|\| =2.6.6-r3 \|\| =2.6.6-r4 \|\| =2.7.1-r0 \|\| =2.7.1-r1 \|\| =2.7.1-r2 \|\| =2.7.1-r3 \|\| =2.7.1-r4 \|\| =2.7.1-r5 \|\| =2.7.2-r0 \|\| =2.7.2-r1 \|\| =2.7.2-r2 \|\| =2.7.2-r3 \|\| =2.7.2-r4 \|\| =2.7.3-r0 \|\| =2.7.3-r1 \|\| =2.7.4-r0 \|\| =2.7.4-r1 \|\| =2.7.4-r2 \|\| =3.0.2-r0 \|\| =3.0.3-r0 \|\| =3.1.1-r0 \|\| =3.1.2-r0 \|\| >=0 <3.1.3-r0	3.1.3-r0
alpine v3.17	ruby	=1.8.7_p160-r2 \|\| =1.8.7_p160-r3 \|\| =1.8.7_p174-r0 \|\| =1.8.7_p174-r1 \|\| =1.8.7_p174-r2 \|\| =1.8.7_p174-r3 \|\| =1.8.7_p174-r4 \|\| =1.8.7_p174-r6 \|\| =1.8.7_p174-r7 \|\| =1.8.7_p299-r0 \|\| =1.8.7_p299-r1 \|\| =1.8.7_p299-r2 \|\| =1.8.7_p352-r0 \|\| =1.8.7_p352-r1 \|\| =1.8.7_p358-r1 \|\| =1.8.7_p72-r1 \|\| =1.8.7_p72-r2 \|\| =1.9.3_p194-r0 \|\| =1.9.3_p286-r0 \|\| =1.9.3_p286-r1 \|\| =1.9.3_p286-r2 \|\| =1.9.3_p327-r0 \|\| =1.9.3_p362-r0 \|\| =1.9.3_p374-r0 \|\| =1.9.3_p385-r0 \|\| =1.9.3_p392-r0 \|\| =2.0.0_p0-r0 \|\| =2.0.0_p0-r1 \|\| =2.0.0_p195-r0 \|\| =2.0.0_p247-r0 \|\| =2.0.0_p247-r1 \|\| =2.0.0_p247-r2 \|\| =2.0.0_p247-r3 \|\| =2.0.0_p353-r0 \|\| =2.0.0_p353-r1 \|\| =2.0.0_p353-r2 \|\| =2.0.0_p481-r0 \|\| =2.1.5-r0 \|\| =2.1.5-r1 \|\| =2.2.1-r0 \|\| =2.2.2-r0 \|\| =2.2.2-r1 \|\| =2.2.3-r0 \|\| =2.2.3-r1 \|\| =2.2.4-r0 \|\| =2.3.1-r0 \|\| =2.3.1-r1 \|\| =2.3.1-r2 \|\| =2.3.2-r0 \|\| =2.3.3-r0 \|\| =2.3.3-r1 \|\| =2.3.3-r2 \|\| =2.3.3-r3 \|\| =2.4.0-r3 \|\| =2.4.1-r1 \|\| =2.4.1-r2 \|\| =2.4.1-r3 \|\| =2.4.1-r4 \|\| =2.4.1-r5 \|\| =2.4.2-r0 \|\| =2.4.2-r1 \|\| =2.4.3-r0 \|\| =2.5.0-r0 \|\| =2.5.0-r1 \|\| =2.5.1-r0 \|\| =2.5.1-r1 \|\| =2.5.1-r2 \|\| =2.5.2-r0 \|\| =2.5.3-r0 \|\| =2.5.3-r1 \|\| =2.5.3-r2 \|\| =2.5.5-r0 \|\| =2.6.3-r0 \|\| =2.6.3-r1 \|\| =2.6.3-r2 \|\| =2.6.4-r0 \|\| =2.6.5-r0 \|\| =2.6.5-r1 \|\| =2.6.5-r2 \|\| =2.6.6-r2 \|\| =2.6.6-r3 \|\| =2.6.6-r4 \|\| =2.7.1-r0 \|\| =2.7.1-r1 \|\| =2.7.1-r2 \|\| =2.7.1-r3 \|\| =2.7.1-r4 \|\| =2.7.1-r5 \|\| =2.7.2-r0 \|\| =2.7.2-r1 \|\| =2.7.2-r2 \|\| =2.7.2-r3 \|\| =2.7.2-r4 \|\| =2.7.3-r0 \|\| =2.7.3-r1 \|\| =2.7.4-r0 \|\| =2.7.4-r1 \|\| =2.7.4-r2 \|\| =3.0.2-r0 \|\| =3.0.3-r0 \|\| =3.1.1-r0 \|\| =3.1.2-r0 \|\| =3.1.2-r1 \|\| >=0 <3.1.3-r0	3.1.3-r0
alpine v3.18	ruby	=1.8.7_p160-r2 \|\| =1.8.7_p160-r3 \|\| =1.8.7_p174-r0 \|\| =1.8.7_p174-r1 \|\| =1.8.7_p174-r2 \|\| =1.8.7_p174-r3 \|\| =1.8.7_p174-r4 \|\| =1.8.7_p174-r6 \|\| =1.8.7_p174-r7 \|\| =1.8.7_p299-r0 \|\| =1.8.7_p299-r1 \|\| =1.8.7_p299-r2 \|\| =1.8.7_p352-r0 \|\| =1.8.7_p352-r1 \|\| =1.8.7_p358-r1 \|\| =1.8.7_p72-r1 \|\| =1.8.7_p72-r2 \|\| =1.9.3_p194-r0 \|\| =1.9.3_p286-r0 \|\| =1.9.3_p286-r1 \|\| =1.9.3_p286-r2 \|\| =1.9.3_p327-r0 \|\| =1.9.3_p362-r0 \|\| =1.9.3_p374-r0 \|\| =1.9.3_p385-r0 \|\| =1.9.3_p392-r0 \|\| =2.0.0_p0-r0 \|\| =2.0.0_p0-r1 \|\| =2.0.0_p195-r0 \|\| =2.0.0_p247-r0 \|\| =2.0.0_p247-r1 \|\| =2.0.0_p247-r2 \|\| =2.0.0_p247-r3 \|\| =2.0.0_p353-r0 \|\| =2.0.0_p353-r1 \|\| =2.0.0_p353-r2 \|\| =2.0.0_p481-r0 \|\| =2.1.5-r0 \|\| =2.1.5-r1 \|\| =2.2.1-r0 \|\| =2.2.2-r0 \|\| =2.2.2-r1 \|\| =2.2.3-r0 \|\| =2.2.3-r1 \|\| =2.2.4-r0 \|\| =2.3.1-r0 \|\| =2.3.1-r1 \|\| =2.3.1-r2 \|\| =2.3.2-r0 \|\| =2.3.3-r0 \|\| =2.3.3-r1 \|\| =2.3.3-r2 \|\| =2.3.3-r3 \|\| =2.4.0-r3 \|\| =2.4.1-r1 \|\| =2.4.1-r2 \|\| =2.4.1-r3 \|\| =2.4.1-r4 \|\| =2.4.1-r5 \|\| =2.4.2-r0 \|\| =2.4.2-r1 \|\| =2.4.3-r0 \|\| =2.5.0-r0 \|\| =2.5.0-r1 \|\| =2.5.1-r0 \|\| =2.5.1-r1 \|\| =2.5.1-r2 \|\| =2.5.2-r0 \|\| =2.5.3-r0 \|\| =2.5.3-r1 \|\| =2.5.3-r2 \|\| =2.5.5-r0 \|\| =2.6.3-r0 \|\| =2.6.3-r1 \|\| =2.6.3-r2 \|\| =2.6.4-r0 \|\| =2.6.5-r0 \|\| =2.6.5-r1 \|\| =2.6.5-r2 \|\| =2.6.6-r2 \|\| =2.6.6-r3 \|\| =2.6.6-r4 \|\| =2.7.1-r0 \|\| =2.7.1-r1 \|\| =2.7.1-r2 \|\| =2.7.1-r3 \|\| =2.7.1-r4 \|\| =2.7.1-r5 \|\| =2.7.2-r0 \|\| =2.7.2-r1 \|\| =2.7.2-r2 \|\| =2.7.2-r3 \|\| =2.7.2-r4 \|\| =2.7.3-r0 \|\| =2.7.3-r1 \|\| =2.7.4-r0 \|\| =2.7.4-r1 \|\| =2.7.4-r2 \|\| =3.0.2-r0 \|\| =3.0.3-r0 \|\| =3.1.1-r0 \|\| =3.1.2-r0 \|\| =3.1.2-r1 \|\| >=0 <3.1.3-r0	3.1.3-r0
alpine v3.19	ruby	=1.8.7_p160-r2 \|\| =1.8.7_p160-r3 \|\| =1.8.7_p174-r0 \|\| =1.8.7_p174-r1 \|\| =1.8.7_p174-r2 \|\| =1.8.7_p174-r3 \|\| =1.8.7_p174-r4 \|\| =1.8.7_p174-r6 \|\| =1.8.7_p174-r7 \|\| =1.8.7_p299-r0 \|\| =1.8.7_p299-r1 \|\| =1.8.7_p299-r2 \|\| =1.8.7_p352-r0 \|\| =1.8.7_p352-r1 \|\| =1.8.7_p358-r1 \|\| =1.8.7_p72-r1 \|\| =1.8.7_p72-r2 \|\| =1.9.3_p194-r0 \|\| =1.9.3_p286-r0 \|\| =1.9.3_p286-r1 \|\| =1.9.3_p286-r2 \|\| =1.9.3_p327-r0 \|\| =1.9.3_p362-r0 \|\| =1.9.3_p374-r0 \|\| =1.9.3_p385-r0 \|\| =1.9.3_p392-r0 \|\| =2.0.0_p0-r0 \|\| =2.0.0_p0-r1 \|\| =2.0.0_p195-r0 \|\| =2.0.0_p247-r0 \|\| =2.0.0_p247-r1 \|\| =2.0.0_p247-r2 \|\| =2.0.0_p247-r3 \|\| =2.0.0_p353-r0 \|\| =2.0.0_p353-r1 \|\| =2.0.0_p353-r2 \|\| =2.0.0_p481-r0 \|\| =2.1.5-r0 \|\| =2.1.5-r1 \|\| =2.2.1-r0 \|\| =2.2.2-r0 \|\| =2.2.2-r1 \|\| =2.2.3-r0 \|\| =2.2.3-r1 \|\| =2.2.4-r0 \|\| =2.3.1-r0 \|\| =2.3.1-r1 \|\| =2.3.1-r2 \|\| =2.3.2-r0 \|\| =2.3.3-r0 \|\| =2.3.3-r1 \|\| =2.3.3-r2 \|\| =2.3.3-r3 \|\| =2.4.0-r3 \|\| =2.4.1-r1 \|\| =2.4.1-r2 \|\| =2.4.1-r3 \|\| =2.4.1-r4 \|\| =2.4.1-r5 \|\| =2.4.2-r0 \|\| =2.4.2-r1 \|\| =2.4.3-r0 \|\| =2.5.0-r0 \|\| =2.5.0-r1 \|\| =2.5.1-r0 \|\| =2.5.1-r1 \|\| =2.5.1-r2 \|\| =2.5.2-r0 \|\| =2.5.3-r0 \|\| =2.5.3-r1 \|\| =2.5.3-r2 \|\| =2.5.5-r0 \|\| =2.6.3-r0 \|\| =2.6.3-r1 \|\| =2.6.3-r2 \|\| =2.6.4-r0 \|\| =2.6.5-r0 \|\| =2.6.5-r1 \|\| =2.6.5-r2 \|\| =2.6.6-r2 \|\| =2.6.6-r3 \|\| =2.6.6-r4 \|\| =2.7.1-r0 \|\| =2.7.1-r1 \|\| =2.7.1-r2 \|\| =2.7.1-r3 \|\| =2.7.1-r4 \|\| =2.7.1-r5 \|\| =2.7.2-r0 \|\| =2.7.2-r1 \|\| =2.7.2-r2 \|\| =2.7.2-r3 \|\| =2.7.2-r4 \|\| =2.7.3-r0 \|\| =2.7.3-r1 \|\| =2.7.4-r0 \|\| =2.7.4-r1 \|\| =2.7.4-r2 \|\| =3.0.2-r0 \|\| =3.0.3-r0 \|\| =3.1.1-r0 \|\| =3.1.2-r0 \|\| =3.1.2-r1 \|\| >=0 <3.1.3-r0	3.1.3-r0

1-10 of 18

Aliases

1. CVE-2021-336212. NVD-2021-336213. OSV-DEBIAN-2021-336214. OSV-2021-336215. OSV-ALPINE-2021-336216. GCVE-2021-336217. SECURITY-TRACKER-CVE-2021-336218. SECURITY-CVE-2021-336219. lists.debian.org10. lists.debian.org11. security.gentoo.org

References

1. https://hackerone.com/reports/12046952. https://github.com/rubysec/ruby-advisory-db/blob/master/gems/cgi/CVE-2021-33621.yml3. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQR7LWED6VAPD5ATYOBZIGJQPCUBRJBX4. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/THVTYHHEOVLQFCFHWURZYO7PVUPBHRZD5. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YACE6ORF2QBXXBK2V2CM36D7TZMEJVAS6. https://lists.fedoraproject.org/archives/list/[email protected]/message/DQR7LWED6VAPD5ATYOBZIGJQPCUBRJBX7. https://lists.fedoraproject.org/archives/list/[email protected]/message/THVTYHHEOVLQFCFHWURZYO7PVUPBHRZD8. https://lists.fedoraproject.org/archives/list/[email protected]/message/YACE6ORF2QBXXBK2V2CM36D7TZMEJVAS9. https://security.netapp.com/advisory/ntap-20221228-000410. https://www.ruby-lang.org/en/news/2022/11/22/http-response-splitting-in-cgi-cve-2021-33621

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.