Debian
rails package

rails 2:4.2.5.1-1 source package in Debian

Changelog

rails (2:4.2.5.1-1) unstable; urgency=high

  * New upstream release. Includes fixes for the following several security
    issues:
    - [CVE-2015-7576] Timing attack vulnerability in basic authentication in
                      Action Controller.
    - [CVE-2016-0751] Possible Object Leak and Denial of Service attack in
                      Action Pack
    - [CVE-2015-7577] Nested attributes rejection proc bypass in Active Record.
    - [CVE-2016-0752] Possible Information Leak Vulnerability in Action View
    - [CVE-2016-0753] Possible Input Validation Circumvention in Active Model
    - [CVE-2015-7581] Object leak vulnerability for wildcard controller routes
                      in Action Pack

 -- Antonio Terceiro <email address hidden>  Thu, 28 Jan 2016 10:56:35 -0200

Upload details

Uploaded by:: Debian Ruby Extras Maintainers on 2016-01-29

Uploaded to:: Sid

Original maintainer:: Debian Ruby Extras Maintainers

Architectures:: all

Section:: ruby

Urgency:: Very Urgent

See full publishing history Publishing

Series	Pocket	Published	Component	Section

Builds

Downloads

File	Size	SHA-256 Checksum
rails_4.2.5.1-1.dsc	2.5 KiB	9941d2707bf3079202ffd068e4440757d0e19c8e47001afca78ca875a4d3baab
rails_4.2.5.1.orig.tar.gz	4.0 MiB	713da4f88244101457b4de5d08007f4b373cb43c3982d72de70bb5c5145afb46
rails_4.2.5.1-1.debian.tar.xz	87.3 KiB	78879268308b353331c30c3cd77286af137932694153f149465b6abb0dadaba5

Available diffs

diff from 2:4.2.5-1 to 2:4.2.5.1-1 (5.9 KiB)

No changes file available.

Debianrails package

rails 2:4.2.5.1-1 source package in Debian

Changelog

Upload details

See full publishing history Publishing

Builds

Downloads

Available diffs

Binary packages built by this source

Debian
rails package