Alerts This Week
Warning Icon 1 631
Alerts This Week
Warning Icon 1 631

Fedora 11: FEDORA-2009-10484 Moderate: Rubygem-Activesupport XSS Issue

fedora
Calendar Grey October 13, 2009
Dist Fedora Esm H88
Important patch for rubygem-activesupport on Fedora addressing a cross-site scripting vulnerability, ensuring optimal performance for Rails applications.
- Fixes CVE-2009-3009 - Downgrade to Rails 2.3.2 to avoid update issues for existing applications

Summary

Utility library which carries commonly used classes and

goodies from the Rails framework

Update Information:

- Fixes CVE-2009-3009 - Downgrade to Rails 2.3.2 to avoid update issues for existing applications

Topics%20covered

Topics Covered

security advisory moderate Fedora XSS rubygem-activesupport

Change Log

* Wed Oct 7 2009 David Lutterkort - 1:2.3.2-2 - Also increase release, otherwise 'make tag' fails * Wed Oct 7 2009 David Lutterkort - 1:2.3.2-1 - Bump epoch; rails is not updatable across versions (bz 520843) * Wed Sep 23 2009 Mamoru Tasaka - 2.3.3-2 - Patch for CVE-2009-3009 (bug 520843) * Sun Jul 26 2009 Jeroen van Meeuwen - 2.3.3-1 - New upstream version

References


[ 1 ] Bug #520843 - CVE-2009-3009 ruby-activesupport: XSS vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=520843

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update rubygem-activesupport' at the command line. For more information, refer to "Managing Software with yum", available at .

Name: rubygem-activesupport
Product: Fedora 11
Version: 2.3.2
Release: 2.fc11
URL: https://rubyonrails.org/
Summary: Support and utility classes used by the Rails framework

Topics%20covered

Topics Covered

security advisory moderate Fedora XSS rubygem-activesupport

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here