rails 2.1.0-4 source package in Ubuntu
Changelog
rails (2.1.0-4) unstable; urgency=low
* Added a fix for binary data corruption with PostgreSQL backend. This
occurred whenever the binary data included ASCII value of \ followed
by three numbers.
* The fix in ActiveRecord to address SQL injection in :limit and :offset
was not complete. MySQL backend was still affected as it redefined the
problematic functions. Pulled in upstream patch.
rails (2.1.0-3) unstable; urgency=high
* Security fix pulled from upstream for a REXML expansion
DoS. (CVE-2008-3790)
-- Kees Cook <email address hidden> Fri, 10 Oct 2008 11:07:16 +0100
Upload details
- Uploaded by:
- Kees Cook
- Uploaded to:
- Intrepid
- Original maintainer:
- Adam Majer
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| rails_2.1.0.orig.tar.gz | 1.9 MiB | c573af0c416f7580cb8c37b4e7cbda8ac7bf17569f5e72a3fab3cf524f0659aa |
| rails_2.1.0-4.diff.gz | 14.3 KiB | 8f307e910761f4b8e945c09af0b243241918fe80b553d9a21d8e5ba5e40e3da7 |
| rails_2.1.0-4.dsc | 1.2 KiB | 86de3f1bbdf8512f2f6df33a495cc55575b55168f0fb5505bb750c5ab397ce89 |
Available diffs
- diff from 2.1.0-2 to 2.1.0-4 (3.1 KiB)
Binary packages built by this source
- rails: No summary available for rails in ubuntu intrepid.
No description available for rails in ubuntu intrepid.
