Navigation:
Browse pkgsrc
(this page) 2021-02-11 15:23:42 by Takahiro Kambe | Files touched by this commit (12) |  |
Log message:
www/rails52: update to 5.2.4.5
## Rails 5.2.4.5 (February 10, 2021) ##
* Fix possible DoS vector in PostgreSQL money type
Carefully crafted input can cause a DoS via the regular expressions used
for validating the money format in the PostgreSQL adapter. This patch
fixes the regexp.
Thanks to @dee-see from Hackerone for this patch!
[CVE-2021-22880]
*Aaron Patterson*
|
| 2020-09-10 16:13:12 by Takahiro Kambe | Files touched by this commit (12) | |
Log message:
www/ruby-rails52: update to 5.2.4.4
Update Ruby on Rails 52 to 5.2.4.4.
Security fix in ruby-actionview52.
## Rails 5.2.4.4 (September 09, 2020) ##
* [CVE-2020-15169] Fix potential XSS vulnerability in the `translate`/`t` helper
*Jonathan Hefner*
|
| 2020-05-19 17:34:47 by Takahiro Kambe | Files touched by this commit (1) | |
Log message: devel/ruby-activemodel52: update to 5.2.4.3 Update ruby-activemodel52 to 5.2.4.3. ## Rails 5.2.4.3 (May 18, 2020) ## * No changes. |
| 2020-03-20 16:38:30 by Takahiro Kambe | Files touched by this commit (1) | |
Log message:
devel/ruby-activemodel52: update to 5.2.4.2
Update ruby-activemodel52 to 5.2.4.2.
## Rails 5.2.4.1 (December 18, 2019) ##
* No changes.
## Rails 5.2.4 (November 27, 2019) ##
* Type cast falsy boolean symbols on boolean attribute as false.
Fixes #35676.
*Ryuta Kamizono*
|
| 2019-04-14 12:30:59 by Takahiro Kambe | Files touched by this commit (2) | |
Log message:
devel/ruby-activemodel52: update to 5.2.3
## Rails 5.2.3 (March 27, 2019) ##
* Fix date value when casting a multiparameter date hash to not convert
from Gregorian date to Julian date.
Before:
Day.new({"day(1i)"=>"1", \
"day(2i)"=>"1", "day(3i)"=>"1"})
=> #<Day id: nil, day: "0001-01-03", created_at: nil, \
updated_at: nil>
After:
Day.new({"day(1i)"=>"1", \
"day(2i)"=>"1", "day(3i)"=>"1"})
=> #<Day id: nil, day: "0001-01-01", created_at: nil, \
updated_at: nil>
Fixes #28521.
*Sayan Chakraborty*
* Fix numericality equality validation of `BigDecimal` and `Float`
by casting to `BigDecimal` on both ends of the validation.
*Gannon McGibbon*
## Rails 5.2.2.1 (March 11, 2019) ##
* No changes.
|
| 2019-03-03 15:45:53 by Takahiro Kambe | Files touched by this commit (4) |
Log message: devel/ruby-activemodel52: add version 5.2.2 package Add ruby-activemodel52 version 5.2.2 package. Active Model provides a known set of interfaces for usage in model classes. They allow for Action Pack helpers to interact with non-ActiveRecord models, for example. Active Model also helps building custom ORMs for use outside of the Rails framework. This is for Ruby on Rails 5.2. |
New packages: