[ubuntu/quantal] ruby-actionpack-3.2 3.2.6-4 (Accepted)
Felix Geyer
debfx-pkg at fobos.de
Sun Aug 12 13:07:13 UTC 2012
ruby-actionpack-3.2 (3.2.6-4) unstable; urgency=high
* Add patches for security problems (Closes: #684454):
+ CVE-2012-3463 - Ruby on Rails Potential XSS Vulnerability in select_tag
prompt
+ CVE-2012-3465 - XSS Vulnerability in strip_tags
+ Both patches were edited from their original versions in two ways:
- the leading a/ and b/ from the filenames were stripped
- changes over test files were removed, since the Debian package
contains no test files.
Date: 2012-08-10 22:25:02.474012+00:00
Signed-By: Felix Geyer <debfx-pkg at fobos.de>
https://launchpad.net/ubuntu/quantal/+source/ruby-actionpack-3.2/3.2.6-4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Quantal-changes
mailing list