Ooooooo-Q

**Name of the Vulnerable Software and Affected Versions** Sinatra versions prior to 4.2.0 **Description** Sinatra, a domain-specific language for creating web applications in Ruby, contains an issue where carefully crafted input can cause excessive processing time during the parsing of `If-Match` and `If-None-Match` headers. This occurs when the `etag` method is used to construct responses, potentially leading to a denial of service. The `If-Match` and `If-None-Match` headers are typically used in generating the `ETag` header value. **Recommendations** Update to Sinatra version 4.2.0 or later.

**Name of the Vulnerable Software and Affected Versions** ActionText versions 7.1.0 through 7.1.3.3 ActionText version 7.2.0.beta1 **Description** The issue arises from instances of ActionText::Attachable::ContentAttachment included within a rich text area tag, which could potentially contain unsanitized HTML. This could lead to a potential cross-site scripting issue within the Trix editor. **Recommendations** For ActionText versions 7.1.0 through 7.1.3.3, update to version 7.1.3.4 to resolve the issue. For ActionText version 7.2.0.beta1, update to version 7.2.0.beta2 to resolve the issue. As a temporary workaround, consider restricting access to the `rich text area` tag until a patch is applied. Apply the provided patch for the 7.1 series, action text content attachment xss 7 1 stable.patch, to aid in mitigating the issue for users who are not able to upgrade immediately.

**Name of the Vulnerable Software and Affected Versions** Ruby on Rails versions prior to 7.1.3.1 Ruby on Rails versions prior to 7.0.8.1 **Description** There is a possible XSS vulnerability when using the translation helpers in Action Controller. Applications using translation methods like `translate`, or `t` on a controller, with a key ending in " html", a `:default` key which contains untrusted user input, and the resulting string is used in a view, may be susceptible to an XSS vulnerability. The vulnerability is related to the incorrect neutralization of input data during web page generation, which can allow an attacker to conduct cross-site scripting. **Recommendations** For versions prior to 7.1.3.1, update to version 7.1.3.1 to fix the vulnerability. For versions prior to 7.0.8.1, update to version 7.0.8.1 to fix the vulnerability. As a temporary workaround, consider disabling the use of translation methods like `translate` or `t` on controllers with keys ending in " html" and default values containing untrusted user input, until a patch is available. Restrict access to the vulnerable translation helpers in Action Controller to minimize the risk of exploitation. Avoid using the `:default` key with untrusted user input in the affected translation methods until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Rack versions 1.3.0 through 3.0.9 and 2.2.8.1. **Description** Rack is a modular Ruby web server interface. A denial of service (DoS) vulnerability exists due to improper handling of Range headers. Carefully crafted Range headers can cause the server to respond with an unexpectedly large response, potentially leading to a denial of service. Applications using the `Rack::File` middleware or the `Rack::Utils.byte ranges` methods, including Rails applications, are vulnerable. **Recommendations** Upgrade to Rack version 3.0.9.1 or 2.2.8.1 to address this vulnerability.