rails 2:4.2.5.1-1 source package in Debian
Changelog
rails (2:4.2.5.1-1) unstable; urgency=high * New upstream release. Includes fixes for the following several security issues: - [CVE-2015-7576] Timing attack vulnerability in basic authentication in Action Controller. - [CVE-2016-0751] Possible Object Leak and Denial of Service attack in Action Pack - [CVE-2015-7577] Nested attributes rejection proc bypass in Active Record. - [CVE-2016-0752] Possible Information Leak Vulnerability in Action View - [CVE-2016-0753] Possible Input Validation Circumvention in Active Model - [CVE-2015-7581] Object leak vulnerability for wildcard controller routes in Action Pack -- Antonio Terceiro <email address hidden> Thu, 28 Jan 2016 10:56:35 -0200
Upload details
- Uploaded by:
- Debian Ruby Extras Maintainers
- Uploaded to:
- Sid
- Original maintainer:
- Debian Ruby Extras Maintainers
- Architectures:
- all
- Section:
- ruby
- Urgency:
- Very Urgent
See full publishing history Publishing
Series | Published | Component | Section |
---|
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
rails_4.2.5.1-1.dsc | 2.5 KiB | 9941d2707bf3079202ffd068e4440757d0e19c8e47001afca78ca875a4d3baab |
rails_4.2.5.1.orig.tar.gz | 4.0 MiB | 713da4f88244101457b4de5d08007f4b373cb43c3982d72de70bb5c5145afb46 |
rails_4.2.5.1-1.debian.tar.xz | 87.3 KiB | 78879268308b353331c30c3cd77286af137932694153f149465b6abb0dadaba5 |
Available diffs
- diff from 2:4.2.5-1 to 2:4.2.5.1-1 (5.9 KiB)
No changes file available.