DSA-6180-1

NameDSA-6180-1
Descriptionruby-rack - security update
SourceDebian
ReferencesCVE-2026-22860, CVE-2026-25500

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
ruby-rack (PTS)bookworm2.2.20-0+deb12u1vulnerable
bookworm (security)2.2.22-0+deb12u1fixed
trixie3.1.18-1~deb13u1vulnerable
trixie (security)3.1.20-0+deb13u1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
ruby-racksourcebookworm2.2.22-0+deb12u1
ruby-racksourcetrixie3.1.20-0+deb13u1
Search for package or bug name: Reporting problems