CVS commit: pkgsrc/devel/ruby-activesupport3

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/devel/ruby-activesupport3
From: "Takahiro Kambe" <taca%netbsd.org@localhost>
Date: Tue, 29 Jan 2013 15:37:52 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Tue Jan 29 15:37:52 UTC 2013

Modified Files:
        pkgsrc/devel/ruby-activesupport3: PLIST distinfo

Log Message:
Update ruby-activesupport3 to 3.0.20.

Fix CVE-2013-0333.

There is a vulnerability in the JSON  code for Ruby on Rails which
allows attackers to bypass authentication systems, inject arbitrary
SQL, inject and execute arbitrary code, or perform a DoS attack on a
Rails application.

## Rails 3.0.20 (unreleased)

* Fix XML serialization of methods that return nil to not be
  considered as YAML (GH #8853 and GH #492)


To generate a diff of this commit:
cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/devel/ruby-activesupport3/PLIST
cvs rdiff -u -r1.18 -r1.19 pkgsrc/devel/ruby-activesupport3/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/lang/ruby
Next by Date: CVS commit: pkgsrc/devel/ruby-activemodel
Previous by Thread: CVS commit: pkgsrc/lang/ruby
Next by Thread: CVS commit: pkgsrc/devel/ruby-activemodel
Indexes:

Home | Main Index | Thread Index | Old Index