Navigation:
Browse pkgsrc
(this page)
devel ruby-act..
CVSweb ] [ 
Homepage ] [ 
RSS ] [ 
Required by ] [ 
Add to tracker ] 2024-10-27 15:35:27 by Takahiro Kambe | Files touched by this commit (14) |  |
Log message: www/ruby-rails71: update to 7.1.4.2 Security fix of ruby-action-mailer70. Other packages have no change except their version. 7.1.4.2 (2024-10-23) Action Mailer * Fix NoMethodError in block_format helper [Michael Leimstaedtner] |
| 2024-10-21 17:07:30 by Takahiro Kambe | Files touched by this commit (14) | |
Log message: www/ruby-rails71: update to 7.1.4.1 Update Ruby on Rails 7.1 to 7.1.4.1. Active Support * No changes. Active Model * No changes. Active Record * No changes. Action View * No changes. Action Pack * Avoid regex backtracking in HTTP Token authentication [CVE-2024-47887] * Avoid regex backtracking in query parameter filtering [CVE-2024-41128] Active Job * No changes. Action Mailer * Avoid regex backtracking in block_format helper [CVE-2024-47889] Action Cable * No changes. Active Storage * No changes. Action Mailbox * No changes. Action Text * Avoid backtracing in plain_text_for_blockquote_node [CVE-2024-47888] Railties * No changes. |
| 2024-09-22 15:28:55 by Takahiro Kambe | Files touched by this commit (2) | |
Log message: textproc/ruby-actiontext71: update to 7.1.4 Action Text 7.1.4 (2024-08-22) * Strip content attribute if the key is present but the value is empty (Jeremy Green) * Only sanitize content attribute when present in attachments. (Petrik de Heus) |
| 2024-06-05 18:44:18 by Takahiro Kambe | Files touched by this commit (14) | |
Log message:
www/ruby-rails71: update to 7.1.3.4
Security fix for CVE-2024-32464 (textproc/ruby-actiontext70) and
CVE-2024-28103 (www/ruby-actionpack61 package).
Ruby on Rails 7.1.3.4 (2024-06-04)
Action Text
* Sanitize ActionText HTML ContentAttachment in Trix edit view
[CVE-2024-32464]
Action Pack
* Include the HTTP Permissions-Policy on non-HTML Content-Types
[CVE-2024-28103]
|
| 2024-02-24 15:55:27 by Takahiro Kambe | Files touched by this commit (15) | |
Log message: www/ruby-rails71: update to 7.1.3.2 Update Ruby on Rails 7.1 and related pacakges to 7.1.3.2 This includes security fix: CVE-2024-26142 for www/ruby-actionpack71 CVE-2024-26143 for www/ruby-actionpack71 Action Pack * Fix possible XSS vulnerability with the translate method in controllers CVE-2024-26143 * Fix ReDoS in Accept header parsing CVE-2024-26142 |
| 2024-02-04 16:20:41 by Takahiro Kambe | Files touched by this commit (1) | |
Log message: textproc/ruby-actiontext71: update to 7.1.3 Action Text (2024-01-16) * No changes. |
| 2023-11-30 16:37:16 by Takahiro Kambe | Files touched by this commit (5) |
Log message: textproc/ruby-actiontext71: add version 7.1.2 Action Text Action Text brings rich text content and editing to Rails. It includes the [Trix editor](https://trix-editor.org) that handles everything from formatting to links to quotes to lists to embedded images and galleries. The rich text content generated by the Trix editor is saved in its own RichText model that's associated with any existing Active Record model in the application. Any embedded images (or other attachments) are automatically stored using Active Storage and associated with the included RichText model. This is for Ruby on Rails 7.1. |
New packages: