Ubuntu
ruby-actionpack-3.2 package

Branches for Quantal

Name Status Last Modified Last Commit
lp:ubuntu/quantal/ruby-actionpack-3.2 2 Mature 2012-08-10 13:08:08 UTC
7. * Add patches for security problems (...

Author: Antonio Terceiro
Revision Date: 2012-08-10 13:08:08 UTC

* Add patches for security problems (Closes: #684454):
  + CVE-2012-3463 - Ruby on Rails Potential XSS Vulnerability in select_tag
    prompt
  + CVE-2012-3465 - XSS Vulnerability in strip_tags
  + Both patches were edited from their original versions in two ways:
    - the leading a/ and b/ from the filenames were stripped
    - changes over test files were removed, since the Debian package
      contains no test files.
lp:ubuntu/quantal-security/ruby-actionpack-3.2 bug 2 Mature 2013-01-18 15:14:58 UTC
8. * SECURITY UPDATE: Unsafe Query Gener...

Author: Christian Kuersteiner
Revision Date: 2013-01-16 14:20:55 UTC

* SECURITY UPDATE: Unsafe Query Generation Risk in Ruby on Rails
  (LP: #1100162)
  - debian/patches/CVE-2013-0155: Strip nils from collections on JSON and
    XML posts. Based on upstream patch.
  - CVE-2013-0155
lp:ubuntu/quantal-updates/ruby-actionpack-3.2 2 Mature 2013-01-18 15:37:45 UTC
8. * SECURITY UPDATE: Unsafe Query Gener...

Author: Christian Kuersteiner
Revision Date: 2013-01-16 14:20:55 UTC

* SECURITY UPDATE: Unsafe Query Generation Risk in Ruby on Rails
  (LP: #1100162)
  - debian/patches/CVE-2013-0155: Strip nils from collections on JSON and
    XML posts. Based on upstream patch.
  - CVE-2013-0155
13 of 3 results FirstPreviousNextLast