Accepted:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 21 Mar 2013 09:29:40 +0100 Source: rails Binary: rails rails-ruby1.8 rails-doc libactiverecord-ruby libactiverecord-ruby1.8 libactiverecord-ruby1.9.1 libactivesupport-ruby libactivesupport-ruby1.8 libactivesupport-ruby1.9.1 libactionpack-ruby libactionpack-ruby1.8 libactionmailer-ruby libactionmailer-ruby1.8 libactiveresource-ruby libactiveresource-ruby1.8 Architecture: source all Version: 2.3.5-1.2+squeeze8 Distribution: stable-security Urgency: high Maintainer: Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@lists.alioth.debian.org> Changed-By: Ondřej Surý <ond...@debian.org> Description: libactionmailer-ruby - Framework for generation of customized email messages libactionmailer-ruby1.8 - Framework for generation of customized email messages libactionpack-ruby - Controller and View framework used by Rails libactionpack-ruby1.8 - Controller and View framework used by Rails libactiverecord-ruby - ORM database interface for ruby libactiverecord-ruby1.8 - ORM database interface for ruby libactiverecord-ruby1.9.1 - ORM database interface for ruby libactiveresource-ruby - Connects objects and REST web services libactiveresource-ruby1.8 - Connects objects and REST web services libactivesupport-ruby - utility classes and extensions (Ruby 1.8) libactivesupport-ruby1.8 - utility classes and extensions (Ruby 1.8) libactivesupport-ruby1.9.1 - utility classes and extensions (Ruby 1.8) rails - MVC ruby based framework geared for web application development rails-doc - Documentation for rails, a MVC ruby based framework rails-ruby1.8 - MVC ruby based framework geared for web application development Changes: rails (2.3.5-1.2+squeeze8) stable-security; urgency=high . * [CVE-2011-2932]: Fix XSS vulnerability in escaping function * [CVE-2012-3464]: Pull upstream backport of html_safe, which fix potential XSS Vulnerability * [CVE-2012-3465]: Fix XSS Vulnerability in strip_tags * [CVE-2013-1854]: Fix symbol DoS vulnerability in Active Record * [CVE-2013-1855]: Fix XSS vulnerability in sanitize_css in Action Pack * [CVE-2013-1857]: Fix XSS Vulnerability in the sanitize helper of Ruby on Rails Checksums-Sha1: 55faa8841d3606f318008b8810a295c1c4150604 1804 rails_2.3.5-1.2+squeeze8.dsc bb5e721234df3dd8e38f31c110f276dc001a42cf 48473 rails_2.3.5-1.2+squeeze8.debian.tar.gz 2fb823758287146757cbe066b249261d91f971e1 12662 rails_2.3.5-1.2+squeeze8_all.deb ae0c7d44d33bebe540c2cba35b27bce84129219c 223164 rails-ruby1.8_2.3.5-1.2+squeeze8_all.deb d4e148b8404b11a894a10494956b1558b33ddac9 909694 rails-doc_2.3.5-1.2+squeeze8_all.deb 507599d7aa3c62c88ccc9af62b18dc2eab015297 10110 libactiverecord-ruby_2.3.5-1.2+squeeze8_all.deb 6bb08af6500bbebe22b9fad18668b92b2b165c46 266556 libactiverecord-ruby1.8_2.3.5-1.2+squeeze8_all.deb 56ba8cc43fa45fd36028c5951743ccd61d926469 266888 libactiverecord-ruby1.9.1_2.3.5-1.2+squeeze8_all.deb 90d9e4fdce9f6da6cfa9a8bf455ed0e9df27bfae 10070 libactivesupport-ruby_2.3.5-1.2+squeeze8_all.deb b021f57c8157aac06d7693729532c96683c56e04 258728 libactivesupport-ruby1.8_2.3.5-1.2+squeeze8_all.deb dc66e15ebce30b2cfcc556340097e32a482af7d3 257382 libactivesupport-ruby1.9.1_2.3.5-1.2+squeeze8_all.deb a639b383ad2d64853b38640a9b5b5c55b7e6fe54 10172 libactionpack-ruby_2.3.5-1.2+squeeze8_all.deb c96d41d380836906a44037360c4b1868a643acce 321638 libactionpack-ruby1.8_2.3.5-1.2+squeeze8_all.deb 9ad9dcd3b1834be62406fcbd5f14157ad4732253 10160 libactionmailer-ruby_2.3.5-1.2+squeeze8_all.deb 8c18040f6ad9b2a6a5e9c58343a71cf7bde33675 32434 libactionmailer-ruby1.8_2.3.5-1.2+squeeze8_all.deb 7ea2a5ca8110f847633b083c569724704a490af2 10136 libactiveresource-ruby_2.3.5-1.2+squeeze8_all.deb 08d2e4c1ea459d09935ce536b4e47fb402dd70e3 37562 libactiveresource-ruby1.8_2.3.5-1.2+squeeze8_all.deb Checksums-Sha256: cad5c1926c68e2b533ec8325669f1bba57eba8bcd7a21abe8218b7b28ce5b4dc 1804 rails_2.3.5-1.2+squeeze8.dsc 06ec4bdb40e04a79637252b28646a1fc1b5238e2b9892e6a0d083f41efba96db 48473 rails_2.3.5-1.2+squeeze8.debian.tar.gz 97d6a20ff01dd0738180f878bee3eb744d6d5bf25f97920e01929551c2535f79 12662 rails_2.3.5-1.2+squeeze8_all.deb 521e47880be0404621c42fe75b7bff5d13c9506413231a79abc5f6f58764f0d9 223164 rails-ruby1.8_2.3.5-1.2+squeeze8_all.deb e46156a8deb67edfb3a8ec872dc6b86fb41b46a177c4ddbbbf5beb68cac640c0 909694 rails-doc_2.3.5-1.2+squeeze8_all.deb 93fe40500c33ebd5d475b9e60d445ac343f34651517fa57f95d3d7d6f43437d8 10110 libactiverecord-ruby_2.3.5-1.2+squeeze8_all.deb 746068675ec6beb1203ecd62cfd440fb5b316a1b1f977cc816866db90dc985be 266556 libactiverecord-ruby1.8_2.3.5-1.2+squeeze8_all.deb f2a467407832bcbe5963d1a6013d3dcd0baea55a33ed972d69374b14165c6d51 266888 libactiverecord-ruby1.9.1_2.3.5-1.2+squeeze8_all.deb 902ff3c96c131bb3939e43723ac0edd4d265255793e0a8873ef4cd342d9b0fe2 10070 libactivesupport-ruby_2.3.5-1.2+squeeze8_all.deb 959ac64a84843e85f0b64a7e2b366785464a19898978dc7627c7faf377b1db61 258728 libactivesupport-ruby1.8_2.3.5-1.2+squeeze8_all.deb f10b08a8b189818a30e78e4831f7fe43c9287fb2ced83f7d1853a9ecd1d63f31 257382 libactivesupport-ruby1.9.1_2.3.5-1.2+squeeze8_all.deb 70a3074f68cd782ec9a480090d19a53f1493d1316d7eeef3b383bac486bb619f 10172 libactionpack-ruby_2.3.5-1.2+squeeze8_all.deb fde6aa32404b1d5055da546f07aff71c3289d9b8b05bbf67c23f62d137beaa5b 321638 libactionpack-ruby1.8_2.3.5-1.2+squeeze8_all.deb 3318e404565b60c3701440cd50c886529fddd2d170a9d86b17c451f8c23b17e6 10160 libactionmailer-ruby_2.3.5-1.2+squeeze8_all.deb 9354bfa6877d0e0c740655b3d92bc3f4256a927be1aaf205e704fc66be2ca448 32434 libactionmailer-ruby1.8_2.3.5-1.2+squeeze8_all.deb 0e7c663c0b7d673cf57c438a88c9d5e7457d8fc464ec13645a6c5f2c40faa108 10136 libactiveresource-ruby_2.3.5-1.2+squeeze8_all.deb 0f1db0e084144e93779408af5112f9fd58aca26e309162ed4e9ee2cdf9f19dda 37562 libactiveresource-ruby1.8_2.3.5-1.2+squeeze8_all.deb Files: 8d9bc122d0fd6c1143e43c842aa43c68 1804 ruby optional rails_2.3.5-1.2+squeeze8.dsc fc59cf5177144d0532508b3cc140f590 48473 ruby optional rails_2.3.5-1.2+squeeze8.debian.tar.gz 65dd5e795fd6f9c9cacc94c8f0cb58da 12662 ruby optional rails_2.3.5-1.2+squeeze8_all.deb 60d35070f1e513506e07c34d3f94df75 223164 ruby optional rails-ruby1.8_2.3.5-1.2+squeeze8_all.deb 899b9c7712a283c61328df883990ed8b 909694 doc optional rails-doc_2.3.5-1.2+squeeze8_all.deb 1e92e254a894af992eeecfce896ed542 10110 ruby optional libactiverecord-ruby_2.3.5-1.2+squeeze8_all.deb ab48f6393a3b2d2a16fbb60869aee3ed 266556 ruby optional libactiverecord-ruby1.8_2.3.5-1.2+squeeze8_all.deb a911ce19c5e972ecec84d46be65d400c 266888 ruby optional libactiverecord-ruby1.9.1_2.3.5-1.2+squeeze8_all.deb 55f7fbd0e5287b5b42e5311533d1e7b3 10070 ruby optional libactivesupport-ruby_2.3.5-1.2+squeeze8_all.deb 7dd85187797b59e7de52cf64dc9c704b 258728 ruby optional libactivesupport-ruby1.8_2.3.5-1.2+squeeze8_all.deb 465ac8f2318cc8d3a23459763b96d9bc 257382 ruby optional libactivesupport-ruby1.9.1_2.3.5-1.2+squeeze8_all.deb 0bcab5cea14c3508efe1e464b5119c70 10172 ruby optional libactionpack-ruby_2.3.5-1.2+squeeze8_all.deb 55e92b4964d21389a5e280b9a062bf15 321638 ruby optional libactionpack-ruby1.8_2.3.5-1.2+squeeze8_all.deb 535e53eefffa4bdba90898d887da9c43 10160 ruby optional libactionmailer-ruby_2.3.5-1.2+squeeze8_all.deb ecb18d9f0534dd5479427323f3a88d99 32434 ruby optional libactionmailer-ruby1.8_2.3.5-1.2+squeeze8_all.deb 0bfa1d112013ddbedf23dd98fff33f86 10136 ruby optional libactiveresource-ruby_2.3.5-1.2+squeeze8_all.deb 24b5a6410c9588a20fd92c0025d4d824 37562 ruby optional libactiveresource-ruby1.8_2.3.5-1.2+squeeze8_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlFTL+0ACgkQ9OZqfMIN8nO52gCgkCp94MtSOr9XgkUej9PXvcO4 yXMAnRsefFZF9UZ5YAJ1oPlOFoDnA/JL =GIpH -----END PGP SIGNATURE----- Thank you for your contribution to Debian. _______________________________________________ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers