CVS commit: pkgsrc/www/ruby-actionpack32

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www/ruby-actionpack32
From: "Takahiro Kambe" <taca%netbsd.org@localhost>
Date: Wed, 4 Dec 2013 15:45:38 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Wed Dec  4 15:45:38 UTC 2013

Modified Files:
        pkgsrc/www/ruby-actionpack32: distinfo

Log Message:
Update ruby-actionpack32 to 3.2.16, security update.

* Deep Munge the parameters for GET and POST Fixes CVE-2013-6417
* Stop using i18n's built in HTML error handling.  Fixes: CVE-2013-4491
* Escape the unit value provided to number_to_currency Fixes CVE-2013-6415
* Only use valid mime type symbols as cache keys CVE-2013-6414


To generate a diff of this commit:
cvs rdiff -u -r1.13 -r1.14 pkgsrc/www/ruby-actionpack32/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/www/ruby-activeresource32
Next by Date: CVS commit: pkgsrc/mail/ruby-actionmailer32
Previous by Thread: CVS commit: pkgsrc/www/ruby-activeresource32
Next by Thread: CVS commit: pkgsrc/mail/ruby-actionmailer32
Indexes:

Home | Main Index | Thread Index | Old Index