Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Leap:42.3:Update
rubygem-actionpack-4_2
CVE-2016-0752.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File CVE-2016-0752.patch of Package rubygem-actionpack-4_2
--- a/actionpack/lib/abstract_controller/rendering.rb +++ a/actionpack/lib/abstract_controller/rendering.rb @@ -77,7 +77,13 @@ module AbstractController # render "foo/bar" to render :file => "foo/bar". # :api: plugin def _normalize_args(action=nil, options={}) - if action.is_a? Hash + case action + when ActionController::Parameters + unless action.permitted? + raise ArgumentError, "render parameters are not permitted" + end + action + when Hash action else options
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor