Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:gem/rack@1.6
purl pkg:gem/rack@1.6
Tags Ghost
Next non-vulnerable version 2.2.22
Latest non-vulnerable version 3.2.6
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-3ycr-9smk-uqdc
Aliases:
CVE-2015-3225
GHSA-rgr4-9jh5-j4j6
Potential Denial of Service Vulnerability Carefully crafted requests can cause a `SystemStackError` and potentially cause a denial of service attack.
1.6.2
Affected by 28 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T15:18:30.313150+00:00 Ruby Importer Affected by VCID-3ycr-9smk-uqdc https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2015-3225.yml 38.0.0