FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Rails -- permission vulnerability

Affected packages
rubygem-actionpack60 < 6.0.3.2

Details

VuXML ID feb8afdc-b3e5-11ea-9df5-08002728f74c
Discovery 2020-06-17
Entry 2020-06-22

Ruby on Rails blog:

Rails 6.0.3.2 has been released! This version of Rails contains an important security patch, and you should upgrade! The release contains only one patch that addresses CVE-2020-8185.

[source]

References

CVE Name CVE-2020-8185
URL https://github.com/rails/rails/blob/6-0-stable/actionpack/CHANGELOG.md
URL https://groups.google.com/forum/#!topic/rubyonrails-security/pAe9EV8gbM0
URL https://weblog.rubyonrails.org/2020/6/17/Rails-6-0-3-2-has-been-released/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.