File rubygem-actionview-4_1.changes of Package rubygem-actionview-4_1

-------------------------------------------------------------------
Wed Aug 17 08:06:20 UTC 2016 - cbruckmayer@suse.com

- Ensure tag/content_tag escapes " in attribute vals 
  Fixes CVE-2016-6316

-------------------------------------------------------------------
Tue Mar  1 05:31:08 UTC 2016 - coolo@suse.com

- updated to version 4.1.14.2
 see installed CHANGELOG.md

  ## Rails 4.1.14.2 (February 26, 2016) ##
  
  *   Do not allow render with unpermitted parameter.
  
      Fixes CVE-2016-2098.
  
      *Arthur Neves*
  
  
  *   Changed the meaning of `render "foo/bar"`.
  
      Previously, calling `render "foo/bar"` in a controller action is equivalent
      to `render file: "foo/bar"`. This has been changed to mean
      `render template: "foo/bar"` instead. If you need to render a file, please
      change your code to use the explicit form (`render file: "foo/bar"`) instead.
  
      Fixes CVE-2016-2097.
  
      *Eileen Uchitelle*
  
  
  ## Rails 4.2.5.1 (January 25, 2015) ##
  
  *   No changes.

-------------------------------------------------------------------
Tue Jan 26 05:29:53 UTC 2016 - coolo@suse.com

- updated to version 4.1.14.1
 see installed CHANGELOG.md

-------------------------------------------------------------------
Fri Nov 13 05:29:23 UTC 2015 - coolo@suse.com

- updated to version 4.1.14
 see installed CHANGELOG.md

  ## Rails 4.1.14 (November 12, 2015) ##
  
  *   Fix `mail_to` when called with `nil` as argument.
  
      *Rafael Mendonça França*

-------------------------------------------------------------------
Tue Aug 25 04:29:33 UTC 2015 - coolo@suse.com

- updated to version 4.1.13
 see installed CHANGELOG.md

  ## Rails 4.1.13 (August 24, 2015) ##
  
  *   No changes.

-------------------------------------------------------------------
Fri Jun 26 04:29:50 UTC 2015 - coolo@suse.com

- updated to version 4.1.12
 see installed CHANGELOG.md

  ## Rails 4.1.12 (June 25, 2015) ##
  
  *   `translate` should handle `raise` flag correctly in case of both main and default
      translation is missing.
  
      Fixes #19967
  
      *Bernard Potocki*
  
  *   `translate` should accept nils as members of the `:default`
      parameter without raising a translation missing error.  Fixes a
      regression introduced 362557e.
  
      Fixes #19419
  
      *Justin Coyne*
  
  *   `number_to_percentage` does not crash with `Float::NAN` or `Float::INFINITY`
      as input when `precision: 0` is used.
  
      Fixes #19227.
  
      *Yves Senn*

-------------------------------------------------------------------
Wed Jun 17 04:30:18 UTC 2015 - coolo@suse.com

- updated to version 4.1.11
 see installed CHANGELOG.md

  ## Rails 4.1.11 (June 16, 2015) ##
  
  *   No changes.

-------------------------------------------------------------------
Sun Mar 22 09:09:28 UTC 2015 - coolo@suse.com

- updated to version 4.1.10
 *   Local variable in a partial is now available even if a falsy value is
     passed to `:object` when rendering a partial.
 
     Fixes #17373.
 
     *Agis Anastasopoulos*
 
 *   Default translations that have a lower precidence than an html safe default,
     but are not themselves safe, should not be marked as html_safe.
 
     *Justin Coyne*

-------------------------------------------------------------------
Mon Jan 19 21:12:12 UTC 2015 - dmueller@suse.com

- update to 4.1.9:
  * Added an explicit error message, in `ActionView::PartialRenderer`
  for partial `rendering`, when the value of option `as` has invalid characters.
  * Update `select_tag` to work correctly with `:include_blank` option passing a string.

-------------------------------------------------------------------
Mon Nov 10 14:00:03 UTC 2014 - tboerger@suse.com

- To get rails 4 running on SLE 11 i have switched the
  rb_build_versions definition to rub21 as it is activated within
  devel:languages:ruby. That way we can get running rails 4 on
  SLE 11 too.

-------------------------------------------------------------------
Sun Oct 12 16:53:53 UTC 2014 - coolo@suse.com

- updated to version 4.1.6
 *   Fix that render layout: 'messages/layout' should also be added to the dependency tracker tree.
 *   Return an absolute instead of relative path from an asset url in the case
     of the `asset_host` proc returning nil
 *   Fix `html_escape_once` to properly handle hex escape sequences (e.g. ᨫ)
 *   Bring `cache_digest` rake tasks up-to-date with the latest API changes

-------------------------------------------------------------------
Wed Jul 23 13:30:35 UTC 2014 - mrueckert@suse.com

- - initial package