Skip to content

chore(deps): update dependency rack to v3.2.2 - autoclosed#372

Closed
renovate[bot] wants to merge 1 commit intomasterfrom
renovate/rack-3.x-lockfile
Closed

chore(deps): update dependency rack to v3.2.2 - autoclosed#372
renovate[bot] wants to merge 1 commit intomasterfrom
renovate/rack-3.x-lockfile

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate bot commented Oct 7, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Confidence
rack (changelog) 3.2.1 -> 3.2.2 age confidence

Release Notes

rack/rack (rack)

v3.2.2

Compare Source

Security
  • CVE-2025-61772 Multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)
  • CVE-2025-61771 Multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
  • CVE-2025-61770 Unbounded multipart preamble buffering enables DoS (memory exhaustion)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot changed the title chore(deps): update dependency rack to v3.2.2 chore(deps): update dependency rack to v3.2.2 - autoclosed Oct 8, 2025
@renovate renovate bot closed this Oct 8, 2025
@renovate renovate bot deleted the renovate/rack-3.x-lockfile branch October 8, 2025 04:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants