| Bug | stretch | buster | bullseye | sid | Description |
|---|
| CVE-2020-5249 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | In Puma (RubyGem) before 4.3.3 and 3.12.4, if an application using Pum ... |
| CVE-2020-5247 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | In Puma (RubyGem) before 4.3.2 and before 3.12.3, if an application us ... |
| CVE-2020-11077 | vulnerable | vulnerable | vulnerable | vulnerable | In Puma (RubyGem) before 4.3.5 and 3.12.6, a client could smuggle a re ... |
| CVE-2020-11076 | vulnerable | vulnerable | vulnerable | vulnerable | In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle a ... |
| CVE-2019-16770 | vulnerable (no DSA) | fixed | fixed | fixed | In Puma before versions 3.12.2 and 4.3.1, a poorly-behaved client coul ... |