CVE-2014-6438 — The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or applicat — CVE Database · The Intelligence Room