Request update of www/rubygem-rails to 3.2.5
Dave Duchscher
daved at tamu.edu
Sun Jun 10 17:04:39 UTC 2012
>Submitter-Id: current-users
>Originator: Dave Duchscher
>Organization:
>Confidential: no
>Synopsis: Request update of www/rubygem-rails to 3.2.5
>Severity: non-critical
>Priority: low
>Category: ports
>Class: update
>Release: FreeBSD 8.3-RELEASE-p1 amd64
>Environment:
System: FreeBSD freebsd-8-3-amd64.net.tamu.edu 8.3-RELEASE-p1 FreeBSD 8.3-RELEASE-p1 #0: Sat May 5 02:00:47 UTC 2012 root at freebsd-8-3-amd64.net.tamu.edu:/usr/obj/usr/src/sys/NIS amd64
>Description:
Requesting update of rails and its associated ports to address security vulnerabilities that are in 3.2.1
CVE-2012-2660 - https://groups.google.com/group/rubyonrails-security/browse_thread/thread/f1203e3376acec0f
CVE-2012-2661 - https://groups.google.com/group/rubyonrails-security/browse_thread/thread/7546a238e1962f59
Thanks for your effort and time in addressing this issue.
>How-To-Repeat:
>Fix:
More information about the freebsd-ruby
mailing list