SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for ruby2.1-rubygem-activesupport-4_2-4.2.2-1.1.x86_64.rpm :
Tue Jan 26 13:00:00 2016 jmassaguerplaAATTsuse.com
- fix bnc#963334 - CVE-2016-0753: rubygem-activemodel,
rubygem-activesupport, rubygem-activerecord: Input Validation
Circumvention
CVE-2016-0753.patch: contains the fix

Tue Jan 26 13:00:00 2016 jmassaguerplaAATTsuse.com
- fix CVE-2015-7576: rubygem-actionpack, rubygem-activesupport:
Timing attack vulnerability in basic authentication in Action Controller
CVE-2015-7576.patch: contains the fix (bsc#963329)

Wed Jul 1 14:00:00 2015 jmassaguerplaAATTsuse.com
- updated to version 4.2.2:

* Fix XSS vulnerability in ActiveSupport::JSON.encode method.
CVE-2015-3226 (bnc#934799).

* Fix denial of service vulnerability in the XML processing.
CVE-2015-3227 (bnc#934800).

Mon Mar 23 13:00:00 2015 cooloAATTsuse.com
- updated to version 4.2.1

* Fixed a problem where String#truncate_words would get stuck with a complex
string.

* Henrik Nygren
*

* Fixed a roundtrip problem with AS::SafeBuffer where primitive-like strings
will be dumped as primitives:
Before:
YAML.load ActiveSupport::SafeBuffer.new(\"Hello\").to_yaml # => \"Hello\"
YAML.load ActiveSupport::SafeBuffer.new(\"true\").to_yaml # => true
YAML.load ActiveSupport::SafeBuffer.new(\"false\").to_yaml # => false
YAML.load ActiveSupport::SafeBuffer.new(\"1\").to_yaml # => 1
YAML.load ActiveSupport::SafeBuffer.new(\"1.1\").to_yaml # => 1.1
After:
YAML.load ActiveSupport::SafeBuffer.new(\"Hello\").to_yaml # => \"Hello\"
YAML.load ActiveSupport::SafeBuffer.new(\"true\").to_yaml # => \"true\"
YAML.load ActiveSupport::SafeBuffer.new(\"false\").to_yaml # => \"false\"
YAML.load ActiveSupport::SafeBuffer.new(\"1\").to_yaml # => \"1\"
YAML.load ActiveSupport::SafeBuffer.new(\"1.1\").to_yaml # => \"1.1\"

* Godfrey Chan
*

* Replace fixed `:en` with `I18n.default_locale` in `Duration#inspect`.

* Dominik Masur
*

* Add missing time zone definitions for Russian Federation and sync them
with `zone.tab` file from tzdata version 2014j (latest).

* Andrey Novikov
*

Mon Jan 19 13:00:00 2015 dmuellerAATTsuse.com
- update to 4.1.9:

* `Method` objects now report themselves as not `duplicable?`. This allows
hashes and arrays containing `Method` objects to be `deep_dup`ed.

Mon Nov 10 13:00:00 2014 tboergerAATTsuse.com
- To get rails 4 running on SLE 11 i have switched the
rb_build_versions definition to rub21 as it is activated within
devel:languages:ruby. That way we can get running rails 4 on
SLE 11 too.

Tue Oct 14 14:00:00 2014 cooloAATTsuse.com
- updated to version 4.1.6

* Fix DateTime comparison with DateTime::Infinity object.

* Fixed a compatibility issue with the `Oj` gem when cherry-picking the file
`active_support/core_ext/object/json` without requiring `active_support/json`.
Fixes #16131.

* Make Dependencies pass a name to NameError error.

* Fixed precision error in NumberHelper when using Rationals.
before:
ActiveSupport::NumberHelper.number_to_rounded Rational(1000, 3), precision: 2
[#]=> \"330.00\"
after:
ActiveSupport::NumberHelper.number_to_rounded Rational(1000, 3), precision: 2
[#]=> \"333.33\"
See #15379.

Wed Jul 23 14:00:00 2014 mrueckertAATTsuse.com
- - initial package


  
ICM