Request 223117: Incident rubygem-actionpack-3_2.openSUSE_13.1_Update - openSUSE Build Service

Overview

Request 223117 accepted

- fix CVE-2014-0081: XSS Vulnerability in number_to_currency,
number_to_percentage and number_to_human (bnc#864433)
- fix CVE-2014-0082: Denial of Service Vulnerability in Action View
when using render :text (bnc#864431)
- added patches:
* CVE-2014-0081.patch: contains fix for CVE-2014-0081
* CVE-2014-0082.patch: contains fix for CVE-2014-0082

Created by jordimassaguerpla about 10 years ago
In state accepted

Incident rubygem-actionpack-3_2.openSUSE_13.1_Update

Comments for request 223117 0

Login required, please login in order to comment

Request History

jordimassaguerpla created request about 10 years ago

- fix CVE-2014-0081: XSS Vulnerability in number_to_currency,
number_to_percentage and number_to_human (bnc#864433)
- fix CVE-2014-0082: Denial of Service Vulnerability in Action View
when using render :text (bnc#864431)
- added patches:
* CVE-2014-0081.patch: contains fix for CVE-2014-0081
* CVE-2014-0082.patch: contains fix for CVE-2014-0082

msmeissn accepted request about 10 years ago

ok

openSUSE Build Service is sponsored by