[DRE-commits] [ruby-actionpack-3.2] 06/06: prepare 3.2.6-6+deb7u1 release
Ondrej Sury
ondrej at moszumanska.debian.org
Wed Dec 4 11:12:34 UTC 2013
This is an automated email from the git hooks/post-receive script.
ondrej pushed a commit to branch master-wheezy
in repository ruby-actionpack-3.2.
commit 90f9984f56cafec1c27de89569293ca6da8cb02a
Author: Ondřej Surý <ondrej at sury.org>
Date: Wed Dec 4 11:41:41 2013 +0100
prepare 3.2.6-6+deb7u1 release
---
debian/changelog | 9 +++++++++
1 file changed, 9 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index 48e67b6..9ff9cf6 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+ruby-actionpack-3.2 (3.2.6-6+deb7u1) wheezy-security; urgency=low
+
+ * [CVE-2013-6417] Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)
+ * [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails
+ * [CVE-2013-6414] Denial of Service Vulnerability in Action View
+ * [CVE-2013-6415] XSS Vulnerability in number_to_currency
+
+ -- Ondřej Surý <ondrej at debian.org> Wed, 04 Dec 2013 11:39:44 +0100
+
ruby-actionpack-3.2 (3.2.6-6) unstable; urgency=high
* [CVE-2013-1855]: Fix XSS vulnerability in sanitize_css in Action Pack
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-ruby-extras/ruby-actionpack-3.2.git
More information about the Pkg-ruby-extras-commits
mailing list