Carefully crafted multipart POST requests can cause Rack's multipart parser to take much longer than expected, leading to a possible denial of service vulnerability.
Created rubygem-rack tracking bugs for this issue:
Affects: epel-all [bug 2099520]
This issue has been addressed in the following products:
Red Hat Satellite 6.11 for RHEL 7
Red Hat Satellite 6.11 for RHEL 8
Via RHSA-2022:7242 https://access.redhat.com/errata/RHSA-2022:7242