Re: CVS commit: pkgsrc/devel/ruby-activemodel42

To: pkgsrc-changes%NetBSD.org@localhost
Subject: Re: CVS commit: pkgsrc/devel/ruby-activemodel42
From: Takahiro Kambe <taca%NetBSD.org@localhost>
Date: Thu, 29 Nov 2018 22:55:56 +0900 (JST)

In message <20181129135039.9A03DFB1F%cvs.NetBSD.org@localhost>
        on Thu, 29 Nov 2018 13:50:39 +0000,
        "Takahiro Kambe" <taca%netbsd.org@localhost> wrote:
> Module Name:  pkgsrc
> Committed By: taca
> Date:         Thu Nov 29 13:50:39 UTC 2018
> 
> Modified Files:
>       pkgsrc/devel/ruby-activemodel42: distinfo
> 
> Log Message:
> devel/ruby-activejob42: update to 4.2.11
> 
> ## Rails 4.2.11 (November 27, 2018) ##
> 
> *   Do not deserialize GlobalID objects that were not generated by Active Job.
> 
>     Trusting any GlobaID object when deserializing jobs can allow attackers to access
>     information that should not be accessible to them.
> 
>     Fix CVE-2018-16476.
> 
>     *Rafael Mendonça França*
Oops, it should be

devel/ruby-activemodel42: update to 4.2.11

No change except version.

-- 
Takahiro Kambe <taca%NetBSD.org@localhost>

References:
- CVS commit: pkgsrc/devel/ruby-activemodel42
  - From: Takahiro Kambe

Prev by Date: CVS commit: pkgsrc/www/ruby-rails42
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/devel/ruby-activemodel42
Next by Thread: CVS commit: pkgsrc/databases/ruby-activerecord42
Indexes:

Home | Main Index | Thread Index | Old Index