bump versionv3.0.6.1

author: Aaron Patterson <tenderlove@ruby-lang.org> 2023-03-13 11:07:00 -0700
committer: Aaron Patterson <tenderlove@ruby-lang.org> 2023-03-13 11:07:00 -0700
commit: 098d8e12c1553411ee198d7890c1fd9f1e8cf979 (patch)
tree: 053287a48998c6a8ff39395a9eda561741cde1d3
parent: 231ef369ad0b542575fb36c74fcfcfabcf6c530c (diff)
download: rack-098d8e12c1553411ee198d7890c1fd9f1e8cf979.tar.gz
2 files changed, 5 insertions, 1 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 4a830d84..cd8500b9 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,10 @@
 
 All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference [Keep A Changelog](https://keepachangelog.com/en/1.0.0/).
 
+## [3.0.6.1] - 2023-03-13
+
+- [CVE-2023-27539] Avoid ReDoS in header parsing
+
 ## [3.0.4.1] - 2023-03-02
 
 - [CVE-2023-27530] Introduce multipart_total_part_limit to limit total parts
diff --git a/lib/rack/version.rb b/lib/rack/version.rb
index f5872308..68337d36 100644
--- a/lib/rack/version.rb
+++ b/lib/rack/version.rb
@@ -25,7 +25,7 @@ module Rack
     VERSION
   end
 
-  RELEASE = "3.0.6"
+  RELEASE = "3.0.6.1"
 
   # Return the Rack release as a dotted string.
   def self.release
author	Aaron Patterson <tenderlove@ruby-lang.org>	2023-03-13 11:07:00 -0700
committer	Aaron Patterson <tenderlove@ruby-lang.org>	2023-03-13 11:07:00 -0700
commit	098d8e12c1553411ee198d7890c1fd9f1e8cf979 (patch)
tree	053287a48998c6a8ff39395a9eda561741cde1d3
parent	231ef369ad0b542575fb36c74fcfcfabcf6c530c (diff)
download	rack-098d8e12c1553411ee198d7890c1fd9f1e8cf979.tar.gz