| Release | Version |
|---|---|
| jessie | 0.2.9-1 |
| stretch (security) | 0.4.0-1+deb9u1 |
| buster | 1.0.2-1 |
| sid | 1.0.2-1 |
| Bug | Description |
|---|---|
| CVE-2017-11173 | Missing anchor in generated regex for rack-cors before 0.4.1 allows a ... |
| DSA / DLA | Description |
|---|---|
| DSA-3931-1 | ruby-rack-cors - security update |