rails 2:4.2.5.1-1 source package in Ubuntu
Changelog
rails (2:4.2.5.1-1) unstable; urgency=high
* New upstream release. Includes fixes for the following several security
issues:
- [CVE-2015-7576] Timing attack vulnerability in basic authentication in
Action Controller.
- [CVE-2016-0751] Possible Object Leak and Denial of Service attack in
Action Pack
- [CVE-2015-7577] Nested attributes rejection proc bypass in Active Record.
- [CVE-2016-0752] Possible Information Leak Vulnerability in Action View
- [CVE-2016-0753] Possible Input Validation Circumvention in Active Model
- [CVE-2015-7581] Object leak vulnerability for wildcard controller routes
in Action Pack
-- Antonio Terceiro <email address hidden> Thu, 28 Jan 2016 10:56:35 -0200
Upload details
- Uploaded by:
- Debian Ruby Extras Maintainers
- Uploaded to:
- Sid
- Original maintainer:
- Debian Ruby Extras Maintainers
- Architectures:
- all
- Section:
- ruby
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| rails_4.2.5.1-1.dsc | 2.5 KiB | 9941d2707bf3079202ffd068e4440757d0e19c8e47001afca78ca875a4d3baab |
| rails_4.2.5.1.orig.tar.gz | 4.0 MiB | 713da4f88244101457b4de5d08007f4b373cb43c3982d72de70bb5c5145afb46 |
| rails_4.2.5.1-1.debian.tar.xz | 87.3 KiB | 78879268308b353331c30c3cd77286af137932694153f149465b6abb0dadaba5 |
Available diffs
- diff from 2:4.2.5-1 to 2:4.2.5.1-1 (5.9 KiB)
No changes file available.
Binary packages built by this source
- rails: MVC ruby based framework geared for web application development (metapackage)
Rails is a full-stack, open-source web framework in Ruby for writing
real-world applications.
.
Being a full-stack framework means that all layers are built to work
seamlessly together. That way you don't repeat yourself and you can
use a single language from top to bottom. Everything from templates to
control flow to business logic is written in Ruby.
.
This is a metapackage.
- ruby-actionmailer: email composition, delivery, and receiving framework (part of Rails)
Action Mailer is a framework for working with email on Rails.
Compose, deliver, receive, and test emails using the familiar
controller/view pattern. First-class support for multipart email
and attachments.
- ruby-actionpack: web-flow and rendering framework putting the VC in MVC (part of Rails)
Action Pack is a framework for web apps on Rails. Simple,
battle-tested conventions for building and testing MVC web
applications. Works with any Rack-compatible server.
- ruby-actionview: framework for handling view template lookup and rendering (part of Rails)
Action View is a framework for handling view template lookup and
rendering, and provides view helpers that assist when building HTML
forms, Atom feeds and more. Template formats that Action View handles
are ERB (embedded Ruby, typically used to inline short Ruby snippets
inside HTML), and XML Builder.
- ruby-activejob: job framework with pluggable queues
Active Job is a framework for declaring jobs and making them run on a variety
of queueing backends. These jobs can be everything from regularly scheduled
clean-ups, to billing charges, to mailings. Anything that can be chopped up
into small units of work and run in parallel, really.
- ruby-activemodel: toolkit for building modeling frameworks (part of Rails)
Active Model is a toolkit for building modeling frameworks like
Active Record and Active Resource. This includes a rich support for
attributes, callbacks, validations, observers, serialization,
internationalization, and testing.
- ruby-activerecord: object-relational mapper framework (part of Rails)
Active Records is a framework to work with databases on Rails. Build
a persistent domain model by mapping database tables to Ruby classes.
Strong conventions for associations, validations, aggregations,
migrations, and testing come baked-in.
- ruby-activesupport: Support and utility classes used by the Rails 4.1 framework
ActiveSupport consists of utility classes and extensions to the Ruby
standard library that were required for Rails but found to be
generally useful.
- ruby-rails: MVC ruby based framework geared for web application development
Rails is a full-stack, open-source web framework in Ruby for writing
real-world applications.
.
Being a full-stack framework means that all layers are built to work
seamlessly together. That way you don't repeat yourself and you can
use a single language from top to bottom. Everything from templates to
control flow to business logic is written in Ruby.
- ruby-railties: tools for creating, working with, and running Rails applications
This package contains the Rails internals, i.e. components that implement
and/or control application bootup, plugins, generators, and rake tasks.
