Debian Security Update DSA-4109 ruby-omniauth - security update

Thread starter LinuxBot
Start date Feb 10, 2018

LinuxBot

Member

Feb 10, 2018

#1

Lalith Rallabhandi discovered that OmniAuth, a Ruby library for implementing multi-provider authentication in web applications, mishandled and leaked sensitive information. An attacker with access to the callback environment, such as in the case of a crafted web application, can request authentication services from this module and access to the CSRF token.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6180-1 ruby-rack - security update

Replies: 0

Views: 104

Mar 27, 2026

LinuxBot

Debian Security Update DSA-6259-1 pyjwt - security update

Replies: 0

Views: 82

May 9, 2026

LinuxBot

Debian Security Update DSA-6281-1 gnutls28 - security update

Replies: 0

Views: 87

May 20, 2026

LinuxBot

Debian Security Update DSA-6048-1 ruby-rack - security update

Replies: 0

Views: 245

Nov 4, 2025

LinuxBot

Debian Security Update DSA-6303-1 varnish - security update

Replies: 0

Views: 53

May 28, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

KGIII
Administrator
f33dm3bits
Super Moderator

Members online

Total: 2,505 (members: 6, guests: 2,499)

Latest posts

Hellooooo
- Latest: KGIII
- 2 minutes ago
Member Introductions
New to the whole Linux scene, have heard really great things figured I'd maybe give it a crack?
- Latest: Perpetual Padawan
- 34 minutes ago
Getting Started
Post a screenshot of your Desktop
- Latest: PuppyHome
- Today at 6:27 PM
Desktop
First-time #Mint #Penguin Here!
- Latest: Perpetual Padawan
- Today at 6:03 PM
Mint
J
Ubuntu 26.04 Dock crashes
- Latest: Jens55
- Today at 5:13 PM
Ubuntu forum

Top