CVS: cvs.openbsd.org: ports

Jeremy Evans Wed, 09 Feb 2011 17:42:58 -0800

CVSROOT:        /cvs
Module name:    ports
Changes by:     [email protected]  2011/02/09 18:42:22


Modified files:
        devel/ruby-actionpack: Makefile 
Added files:
        devel/ruby-actionpack/patches: 
                                       
patch-lib_action_controller_metal_request_forgery_protection_rb 
                                       
patch-lib_action_dispatch_http_request_rb 
                                       
patch-lib_action_view_helpers_url_helper_rb 

Log message:
Apply security fixes for:

CVE-2011-0446: Potential XSS Problem with mail_to :encode => :javascript
CVE-2011-0447: CSRF Protection Bypass

OK ajacoutot@

CVS: cvs.openbsd.org: ports

Reply via email to