bump versionv2.2.6.3

author: Aaron Patterson <tenderlove@ruby-lang.org> 2023-03-02 14:44:22 -0800
committer: Aaron Patterson <tenderlove@ruby-lang.org> 2023-03-02 14:46:55 -0800
commit: d6b5b2bab88f458fb048133604faebea952d8133 (patch)
tree: b75c8ea0c63e0f65cdd0c7c7f2e4248c505dfad5
parent: 9aac3757fe19cdb0476504c9245170115bec9668 (diff)
download: rack-d6b5b2bab88f458fb048133604faebea952d8133.tar.gz
2 files changed, 5 insertions, 1 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index ff8a58e0..b81a68d5 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -2,6 +2,10 @@
 
 All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference [Keep A Changelog](https://keepachangelog.com/en/1.0.0/).
 
+## [2.2.6.3] - 2023-03-02
+
+- [CVE-2023-27530] Introduce multipart_total_part_limit to limit total parts
+
 ## [2.2.6.2] - 2022-01-17
 
 - [CVE-2022-44570] Fix ReDoS in Rack::Utils.get_byte_ranges
diff --git a/lib/rack/version.rb b/lib/rack/version.rb
index d829db1c..0c38a46d 100644
--- a/lib/rack/version.rb
+++ b/lib/rack/version.rb
@@ -20,7 +20,7 @@ module Rack
     VERSION.join(".")
   end
 
-  RELEASE = "2.2.6.2"
+  RELEASE = "2.2.6.3"
 
   # Return the Rack release as a dotted string.
   def self.release
author	Aaron Patterson <tenderlove@ruby-lang.org>	2023-03-02 14:44:22 -0800
committer	Aaron Patterson <tenderlove@ruby-lang.org>	2023-03-02 14:46:55 -0800
commit	d6b5b2bab88f458fb048133604faebea952d8133 (patch)
tree	b75c8ea0c63e0f65cdd0c7c7f2e4248c505dfad5
parent	9aac3757fe19cdb0476504c9245170115bec9668 (diff)
download	rack-d6b5b2bab88f458fb048133604faebea952d8133.tar.gz