Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: rack/rack
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v3.0.8
Choose a base ref
...
head repository: rack/rack
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v3.0.9.1
Choose a head ref
  • 8 commits
  • 8 files changed
  • 5 contributors

Commits on Jun 14, 2023

  1. Update CHANGELOG for 3.0.8 (#2086)

    @skipkayhil
    skipkayhil authored Jun 14, 2023
    Configuration menu
    Copy the full SHA
    8d1bf99 View commit details
    Browse the repository at this point in the history

Commits on Jan 31, 2024

  1. Fix content-length calcuation in Rack:Response#write (#2150) 

    When `Rack::Response` is initialized with an Array, it incorrectly
increments its internal `@length` value and emitted content-length
header on every subsequent write. The more times `write` is called, the
more the error accumulates.

This commit fixes the accumulation bug, and fixes/adds specs to properly
test the scenario where `write` is used multiple times.
    @mattbrictson @ioquatix
    mattbrictson authored and ioquatix committed Jan 31, 2024
    Configuration menu
    Copy the full SHA
    c8b977f View commit details
    Browse the repository at this point in the history

  2. Update Ruby versions for external tests: drop v2.7 and add v3.2 and v… 

    …3.3. (#2143)
    @ioquatix
    ioquatix committed Jan 31, 2024
    Configuration menu
    Copy the full SHA
    d3d415e View commit details
    Browse the repository at this point in the history

  3. Bump patch version.

    @ioquatix
    ioquatix committed Jan 31, 2024
    Configuration menu
    Copy the full SHA
    0b3f997 View commit details
    Browse the repository at this point in the history

Commits on Feb 21, 2024

  1. Fixing ReDoS in header parsing 

    Thanks svalkanov

[CVE-2024-26146]
    @tenderlove
    tenderlove committed Feb 21, 2024
    Configuration menu
    Copy the full SHA
    a227cd7 View commit details
    Browse the repository at this point in the history

  2. Return an empty array when ranges are too large 

    If the sum of the requested ranges is larger than the file itself,
return an empty array. In other words, refuse to respond with any bytes.

[CVE-2024-26141]
    @tenderlove
    tenderlove committed Feb 21, 2024
    Configuration menu
    Copy the full SHA
    4849132 View commit details
    Browse the repository at this point in the history

  3. Avoid 2nd degree polynomial regexp in MediaType

    @byroot @tenderlove
    byroot authored and tenderlove committed Feb 21, 2024
    Configuration menu
    Copy the full SHA
    6efb2ce View commit details
    Browse the repository at this point in the history

  4. bump version

    @tenderlove
    tenderlove committed Feb 21, 2024
    Configuration menu
    Copy the full SHA
    a4bc5e0 View commit details
    Browse the repository at this point in the history
Loading
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy