| Name | CVE-2026-39324 |
| Description | Rack::Session is a session management implementation for Rack. From 2. ... |
| Source | CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
Vulnerable and fixed packages
The table below lists information on source packages.
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|
| ruby-rack-session | source | (unstable) | (unfixed) | | | |
Notes
https://github.com/rack/rack-session/security/advisories/GHSA-33qg-7wpp-89cq
Fixed by: https://github.com/rack/rack-session/commit/f43638cb3a4d15c3ecaf59e67a04b47fda08eeac (v2.1.2)