[Bug 1100162] Re: Unsafe Query Generation Risk in Ruby on Rails

Launchpad Bug Tracker Fri, 18 Jan 2013 07:06:32 -0800

*** This bug is a duplicate of bug 1100188 ***
    https://bugs.launchpad.net/bugs/1100188


This bug was fixed in the package ruby-actionpack-3.2 - 3.2.6-4ubuntu0.1

---------------
ruby-actionpack-3.2 (3.2.6-4ubuntu0.1) quantal-security; urgency=low

  * SECURITY UPDATE: Unsafe Query Generation Risk in Ruby on Rails
    (LP: #1100162)
    - debian/patches/CVE-2013-0155: Strip nils from collections on JSON and
      XML posts. Based on upstream patch.
    - CVE-2013-0155
 -- Christian Kuersteiner <[email protected]>   Wed, 16 Jan 2013 14:20:55 +0700

** Changed in: ruby-actionpack-3.2 (Ubuntu)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1100162

Title:
  Unsafe Query Generation Risk in Ruby on Rails

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ruby-actionpack-3.2/+bug/1100162/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1100162] Re: Unsafe Query Generation Risk in Ruby on Rails

Reply via email to