kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/ruby-actionpack60
History
taca a9f7375312 www/ruby-rails60: update to 6.0.3.5 
databases/ruby-activerecord60:

## Rails 6.0.3.5 (February 10, 2021) ##

*   Fix possible DoS vector in PostgreSQL money type

    Carefully crafted input can cause a DoS via the regular expressions used
    for validating the money format in the PostgreSQL adapter.  This patch
    fixes the regexp.

    Thanks to @dee-see from Hackerone for this patch!

    [CVE-2021-22880]

    *Aaron Patterson*

www/ruby-actionpack60

## Rails 6.0.3.5 (February 10, 2021) ##

*   Prevent open redirect when allowed host starts with a dot

    [CVE-2021-22881]

    Thanks to @tktech (https://hackerone.com/tktech) for reporting this
    issue and the patch!

    *Aaron Patterson*
2021-02-11 14:30:06 +00:00
..
DESCR
distinfo www/ruby-rails60: update to 6.0.3.5 2021-02-11 14:30:06 +00:00
Makefile Remove RUBY_VERSIONS_INCOMPATIBLE for ruby24. 2020-05-21 16:04:21 +00:00
PLIST