-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Wed, 04 Dec 2013 11:39:44 +0100 Source: ruby-actionpack-3.2 Binary: ruby-actionpack-3.2 Architecture: source all Version: 3.2.6-6+deb7u1 Distribution: wheezy-security Urgency: low Maintainer: Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@lists.alioth.debian.org> Changed-By: Ondřej Surý <ondrej@debian.org> Description: ruby-actionpack-3.2 - web-flow and rendering framework putting the VC in MVC (part of R Changes: ruby-actionpack-3.2 (3.2.6-6+deb7u1) wheezy-security; urgency=low . * [CVE-2013-6417] Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk) * [CVE-2013-4491] Reflective XSS Vulnerability in Ruby on Rails * [CVE-2013-6414] Denial of Service Vulnerability in Action View * [CVE-2013-6415] XSS Vulnerability in number_to_currency * [CVE-2013-4389] Fix Possible DoS Vulnerability in Action Mailer Checksums-Sha1: 3bc0e97681e965817dee6f1574afd8ad7f10afdf 378423 ruby-actionpack-3.2_3.2.6.orig.tar.gz 751b1734514623ed0784c03c5679ec065db50b15 1711 ruby-actionpack-3.2_3.2.6-6+deb7u1.dsc fb7ad7b20201db531088a46de6f5d071a27f46b7 8885 ruby-actionpack-3.2_3.2.6-6+deb7u1.debian.tar.gz 3ed03232c762d266e0245c5cdebc6009d843ebd0 385808 ruby-actionpack-3.2_3.2.6-6+deb7u1_all.deb Checksums-Sha256: aa4872c2c30314ca10f4f7f55523893791813d19562eeb978a676adbc4321296 378423 ruby-actionpack-3.2_3.2.6.orig.tar.gz 7e33fa176de49881db0011ca30abdcdfc4cbeda1caa19f215f8436ab46b95e81 1711 ruby-actionpack-3.2_3.2.6-6+deb7u1.dsc 53147d22e9cb79c66be56a37defe9622d879e0f04a9ccc71c9c7209bd75c6a19 8885 ruby-actionpack-3.2_3.2.6-6+deb7u1.debian.tar.gz 92fc58d6f77799ebf997ad9df8b565eabfefcff86418f9c7c9d3e9b964a25679 385808 ruby-actionpack-3.2_3.2.6-6+deb7u1_all.deb Files: a3a887bee7bce808056229e30b96f708 378423 ruby optional ruby-actionpack-3.2_3.2.6.orig.tar.gz 343ca79892a261bc4c7d826177caa59f 1711 ruby optional ruby-actionpack-3.2_3.2.6-6+deb7u1.dsc a3bfb308f2178417be238b6863d52cba 8885 ruby optional ruby-actionpack-3.2_3.2.6-6+deb7u1.debian.tar.gz b3a228e38bac1423984b21b5b554787b 385808 ruby optional ruby-actionpack-3.2_3.2.6-6+deb7u1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlL7e+cACgkQ9OZqfMIN8nOeTgCeMDzR5WI9Ug3/MgkSLXdHATFN A1kAn3fbAmDO140bNdkGcgO/UA986BLD =XJk6 -----END PGP SIGNATURE-----