This bug was fixed in the package ruby-activesupport-2.3 - 2.3.14-4ubuntu0.1
--------------- ruby-activesupport-2.3 (2.3.14-4ubuntu0.1) quantal-security; urgency=low
* SECURITY UPDATE: vulnerabilities in parameter parsing (LP: #1098357) - debian/patches/CVE-2013-0156.patch: added patch from Debian 2.3.14-5 - CVE-2013-0156 -- Marc Deslauriers <email address hidden> Fri, 18 Jan 2013 08:46:18 -0500
This bug was fixed in the package ruby-activesupp ort-2.3 - 2.3.14-4ubuntu0.1
--------------- ort-2.3 (2.3.14-4ubuntu0.1) quantal-security; urgency=low
ruby-activesupp
* SECURITY UPDATE: vulnerabilities in parameter parsing (LP: #1098357) patches/ CVE-2013- 0156.patch: added patch from Debian 2.3.14-5
- debian/
- CVE-2013-0156
-- Marc Deslauriers <email address hidden> Fri, 18 Jan 2013 08:46:18 -0500