CVE-2015-3225: Potential Denial of Service Vulnerability

July 26, 2015 (updated October 30, 2018)

Carefully crafted requests can cause a SystemStackError and potentially cause a denial of service attack.

References

github.com/rack/rack/commits/1.4.6
groups.google.com/forum/

Detect and mitigate CVE-2015-3225 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →