rails 2.1.0-4 source package in Ubuntu
Changelog
rails (2.1.0-4) unstable; urgency=low * Added a fix for binary data corruption with PostgreSQL backend. This occurred whenever the binary data included ASCII value of \ followed by three numbers. * The fix in ActiveRecord to address SQL injection in :limit and :offset was not complete. MySQL backend was still affected as it redefined the problematic functions. Pulled in upstream patch. rails (2.1.0-3) unstable; urgency=high * Security fix pulled from upstream for a REXML expansion DoS. (CVE-2008-3790) -- Kees Cook <email address hidden> Fri, 10 Oct 2008 11:07:16 +0100
Upload details
- Uploaded by:
- Kees Cook
- Uploaded to:
- Intrepid
- Original maintainer:
- Adam Majer
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
rails_2.1.0.orig.tar.gz | 1.9 MiB | c573af0c416f7580cb8c37b4e7cbda8ac7bf17569f5e72a3fab3cf524f0659aa |
rails_2.1.0-4.diff.gz | 14.3 KiB | 8f307e910761f4b8e945c09af0b243241918fe80b553d9a21d8e5ba5e40e3da7 |
rails_2.1.0-4.dsc | 1.2 KiB | 86de3f1bbdf8512f2f6df33a495cc55575b55168f0fb5505bb750c5ab397ce89 |
Available diffs
- diff from 2.1.0-2 to 2.1.0-4 (3.1 KiB)
Binary packages built by this source
- rails: No summary available for rails in ubuntu intrepid.
No description available for rails in ubuntu intrepid.