Package: ruby-activerecord-2.3 / 2.3.14-6

Metadata

Package Version Patches format
ruby-activerecord-2.3 2.3.14-6 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 remove_require_rubygems.patch | (download)

examples/performance.rb | 4 0 + 4 - 0 !
lib/active_record/connection_adapters/abstract/connection_specification.rb | 8 1 + 7 - 0 !
test/cases/helper.rb | 1 0 + 1 - 0 !
3 files changed, 1 insertion(+), 12 deletions(-)

 
---
activerecord 2.3.5 1.patch | (download)

lib/active_record/connection_adapters/postgresql_adapter.rb | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 
---
2 3 dynamic_finder_injection.patch | (download)

lib/active_record/base.rb | 6 5 + 1 - 0 !
test/cases/finder_test.rb | 12 12 + 0 - 0 !
2 files changed, 17 insertions(+), 1 deletion(-)

 
 [patch] cve-2012-5664 options hashes should only be extracted if
 there are extra parameters
CVE 2013 0155.patch | (download)

lib/active_record/base.rb | 12 8 + 4 - 0 !
1 file changed, 8 insertions(+), 4 deletions(-)

 
 fix for cve-2013-0155
 This includes the patch released in the updated announcement for CVE-2013-0155
 plus some previous changes that it requires.
 .
CVE 2013 0276.patch | (download)

lib/active_record/attribute_methods.rb | 2 1 + 1 - 0 !
lib/active_record/base.rb | 6 3 + 3 - 0 !
2 files changed, 4 insertions(+), 4 deletions(-)

 
 [patch] fixing attr_protected cve-2013-0276
CVE 2013 0277.patch | (download)

lib/active_record/attribute_methods.rb | 17 16 + 1 - 0 !
test/cases/base_test.rb | 6 6 + 0 - 0 !
2 files changed, 22 insertions(+), 1 deletion(-)

 
 [patch] fix serialization vulnerability
CVE 2013 1854.patch | (download)

lib/active_record/base.rb | 2 1 + 1 - 0 !
lib/active_record/reflection.rb | 2 1 + 1 - 0 !
2 files changed, 2 insertions(+), 2 deletions(-)

 
---