未验证 提交 52ea6362 编辑于 2 years ago 作者: Nick Malcolm

Update Rails to 6.1.7.1 to address security vulnerabilities

- [CVE-2023-22797] Possible Open Redirect Vulnerability in Action Pack
- [CVE-2022-44566] Possible Denial of Service Vulnerability in ActiveRecord’s PostgreSQL
- [CVE-2023-22795] Possible ReDoS based DoS vulnerability in Action Dispatch
- [CVE-2023-22794] SQL Injection Vulnerability via ActiveRecord comments
- [CVE-2023-22796] Possible ReDoS based DoS vulnerability in Active Support’s underscore
- [CVE-2023-22792] Possible ReDoS based DoS vulnerability in Action Dispatch

See details at https://rubyonrails.org/2023/1/17/Rails-Versions-6-0-6-1-6-1-7-1-7-0-4-1-have-been-released

Changelog: security

上级 6790a884

No related branches found

No related tags found

隐藏空白变更内容

行内左右并排

显示有 71 个添加和 71 个删除

想要评论请注册或