Next | Query returned 6 messages, browsing 1 to 10 | previous

History of commit frequency

CVS Commit History:


   2012-08-20 10:22:29 by Steven Drake | Files touched by this commit (9) | Package updated
Log message:
Pullup ticket #3904 - requested by taca
Ruby on Rails 3.2.8 security update

Revisions pulled up:
- databases/ruby-activerecord32/distinfo                        1.6
- devel/ruby-activemodel32/distinfo                             1.6
- devel/ruby-activesupport32/distinfo                           1.6
- devel/ruby-railties32/distinfo                                1.6
- lang/ruby/rails.mk                                            1.30
- mail/ruby-actionmailer32/distinfo                             1.6
- www/ruby-actionpack32/distinfo                                1.6
- www/ruby-activeresource32/distinfo                            1.6
- www/ruby-rails32/distinfo                                     1.6

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:37:06 UTC 2012

   Modified Files:
   	pkgsrc/lang/ruby: rails.mk

   Log message:
   Start update of Ruby on Rails 3.2.8.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:38:09 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activesupport32: distinfo

   Log message:
   Update ruby-activesupport32 to 3.2.8.

   ## Rails 3.2.8 (Aug 9, 2012) ##

   * Fix ActiveSupport integration with Mocha > 0.12.1. *Mike Gunderloy*

   * Reverted the deprecation of ActiveSupport::JSON::Variable.
     *Rafael Mendonça França*

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:38:41 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activemodel32: distinfo

   Log message:
   Update ruby-activemodel32 to 3.2.8.

   ## Rails 3.2.8 (Aug 9, 2012) ##

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:40:00 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-actionpack32: distinfo

   Log message:
   Update ruby-actionpack32 to 3.2.8.

   ## Rails 3.2.8 (Aug 9, 2012) ##

   * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
     helper doesn't correctly handle malformed html.  As a result an attacker can
     execute arbitrary javascript through the use of specially crafted malformed
     html.

     *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*

   * When a "prompt" value is supplied to the `select_tag` helper, the \ 
"prompt"
     value is not escaped.
     If untrusted data is not escaped, and is supplied as the prompt value, there
     is a potential for XSS attacks.
     Vulnerable code will look something like this:

       select_tag("name", options, :prompt => UNTRUSTED_INPUT)

     *Santiago Pastorino*

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:41:02 UTC 2012

   Modified Files:
   	pkgsrc/databases/ruby-activerecord32: distinfo

   Log message:
   Update ruby-activerecord32 to 3.2.8.

   ## Rails 3.2.8 (Aug 9, 2012) ##

   * Do not consider the numeric attribute as changed if the old value is zero
     and the new value is not a string.
     Fixes #7237.

     *Rafael Mendonça França*

   * Removes the deprecation of `update_attribute`. *fxn*

   * Reverted the deprecation of `composed_of`. *Rafael Mendonça França*

   * Reverted the deprecation of `*_sql` association options. They will be
     deprecated in 4.0 instead. *Jon Leighton*

   * Do not eager load AR session store. ActiveRecord::SessionStore depends on
     the abstract store in Action Pack. Eager loading this class would break
     client code that eager loads Active Record standalone.
     Fixes #7160

     *Xavier Noria*

   * Do not set RAILS_ENV to "development" when using `db:test:prepare` and
     related rake tasks.
     This was causing the truncation of the development database data when using
     RSpec.

     Fixes #7175.

     *Rafael Mendonça França*

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:41:37 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-activeresource32: distinfo

   Log message:
   Update ruby-activeresource32 to 3.2.8.

   ## Rails 3.2.8 (Aug 9, 2012) ##

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:42:14 UTC 2012

   Modified Files:
   	pkgsrc/mail/ruby-actionmailer32: distinfo

   Log message:
   Update ruby-actionmailer32 to 3.2.8.

   ## Rails 3.2.8 (Aug 9, 2012) ##

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:43:08 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-railties32: distinfo

   Log message:
   Update ruby-railties32 to 3.2.8.

   ## Rails 3.2.8 (Aug 9, 2012) ##

   * ERB scaffold generator use the `:data => { :confirm => \ 
"Text" }` syntax
     instead of `:confirm`.

     *Rafael Mendonça França*

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 12:44:30 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-rails32: distinfo

   Log message:
   Update ruby-rails32 to 3.2.8.

   This is a meta-like package and no changes.
   2012-08-20 10:19:37 by Steven Drake | Files touched by this commit (9) | Package updated
Log message:
Pullup ticket #3902 - requested by taca
Ruby on Rails 3.1.8 security update

Revisions pulled up:
- databases/ruby-activerecord31/distinfo                        1.6
- devel/ruby-activemodel31/distinfo                             1.6
- devel/ruby-activesupport31/distinfo                           1.7
- devel/ruby-railties31/distinfo                                1.6
- lang/ruby/rails.mk                                            1.29
- mail/ruby-actionmailer31/distinfo                             1.6
- www/ruby-actionpack31/distinfo                                1.7
- www/ruby-activeresource31/distinfo                            1.6
- www/ruby-rails31/distinfo                                     1.6

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:32:52 UTC 2012

   Modified Files:
   	pkgsrc/lang/ruby: rails.mk

   Log message:
   Start Ruby on Rails 3.1.8.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:33:18 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activesupport31: distinfo

   Log message:
   Update ruby-activesupport31 to 3.1.8.

   ## Rails 3.1.8 (Aug 9, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:33:48 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activemodel31: distinfo

   Log message:
   Update ruby-activemodel31 to 3.1.8.

   ## Rails 3.1.8 (Aug 9, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:34:38 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-actionpack31: distinfo

   Log message:
   Update ruby-actionpack31 to 3.1.8.

   ## Rails 3.1.8 (Aug 9, 2012)

   * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
     helper doesn't correctly handle malformed html.  As a result an attacker can
     execute arbitrary javascript through the use of specially crafted malformed
     html.

     *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*

   * When a "prompt" value is supplied to the `select_tag` helper, the
     "prompt" value is not escaped.
     If untrusted data is not escaped, and is supplied as the prompt value,
     there is a potential for XSS attacks.
     Vulnerable code will look something like this:
       select_tag("name", options, :prompt => UNTRUSTED_INPUT)

     *Santiago Pastorino*

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:35:20 UTC 2012

   Modified Files:
   	pkgsrc/databases/ruby-activerecord31: distinfo

   Log message:
   Update ruby-activerecord31 to 3.1.8.

   ## Rails 3.1.8 (Aug 9, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:36:35 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-activeresource31: distinfo

   Log message:
   Update ruby-activeresource31 to 3.1.8.

   ## Rails 3.1.8 (Aug 9, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:37:22 UTC 2012

   Modified Files:
   	pkgsrc/mail/ruby-actionmailer31: distinfo

   Log message:
   Update ruby-actionmailer31 to 3.1.8.

   ## Rails 3.1.8 (Aug 9, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:37:52 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-railties31: distinfo

   Log message:
   Update ruby-railties31 to 3.1.8.

   ## Rails 3.1.8 (Aug 9, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 10:38:45 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-rails31: distinfo

   Log message:
   Update ruby-rails31 to 3.1.8.

   This is a meta-like package and no changes.
   2012-08-20 09:54:05 by Steven Drake | Files touched by this commit (9) | Package updated
Log message:
Pullup ticket #3903 - requested by taca
Ruby on Rails 3.0.17 security update.

Revisions pulled up:
- databases/ruby-activerecord3/distinfo                         1.15
- devel/ruby-activemodel/distinfo                               1.15
- devel/ruby-activesupport3/distinfo                            1.16
- devel/ruby-railties/distinfo                                  1.15
- lang/ruby/rails.mk                                            1.28
- mail/ruby-actionmailer3/distinfo                              1.17
- www/ruby-actionpack3/distinfo                                 1.16
- www/ruby-activeresource3/distinfo                             1.15
- www/ruby-rails3/distinfo                                      1.16

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:44:22 UTC 2012

   Modified Files:
   	pkgsrc/lang/ruby: rails.mk

   Log message:
   Start update of Ruby on Rails 3.0.17.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:44:58 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activesupport3: distinfo

   Log message:
   Update ruby-activesupport3 to 3.0.17.

   ## Rails 3.0.17 (Aug 9, 2012)

   * No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:45:45 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activemodel: distinfo

   Log message:
   Update ruby-activemodel to 3.0.17.

   ## Rails 3.0.17 (Aug 9, 2012)

   * No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:46:45 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-actionpack3: distinfo

   Log message:
   Update ruby-actionpack3 to 3.0.17

   ## Rails 3.0.17 (Aug 9, 2012)

   * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
     helper doesn't correctly handle malformed html.  As a result an attacker can
     execute arbitrary javascript through the use of specially crafted malformed
     html.

     *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*

   * When a "prompt" value is supplied to the `select_tag` helper, the \ 
"prompt"
     value is not escaped.  If untrusted data is not escaped, and is supplied as
     the prompt value, there is a potential for XSS attacks.
     Vulnerable code will look something like this:
       select_tag("name", options, :prompt => UNTRUSTED_INPUT)

     *Santiago Pastorino*

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:47:45 UTC 2012

   Modified Files:
   	pkgsrc/databases/ruby-activerecord3: distinfo

   Log message:
   Update ruby-activerecord3 to 3.0.17.

   ## Rails 3.0.17 (Aug 9, 2012)

   * Fix type_to_sql with text and limit on mysql/mysql2 (GH #7252)

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:48:26 UTC 2012

   Modified Files:
   	pkgsrc/mail/ruby-actionmailer3: distinfo

   Log message:
   Update ruby-actionmailer3 to 3.0.17.

   ## Rails 3.0.17 (Aug 9, 2012)

   * No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:49:01 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-railties: distinfo

   Log message:
   Update ruby-railties to 3.0.17.

   ## Rails 3.0.17 (Aug 9, 2012)

   * No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Aug 12 09:50:41 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-rails3: distinfo

   Log message:
   Update ruby-rails3 to 3.0.17.

   This is a meta-like package and no changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Wed Aug 15 15:58:23 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-activeresource3: distinfo

   Log message:
   Oops, missed from commit for ruby-activeresource3.
   2012-08-12 16:49:00 by Matthias Scheler | Files touched by this commit (9) | Package updated
Log message:
Pullup ticket #3896 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update

Revisions pulled up:
- databases/ruby-activerecord32/distinfo                        1.5
- devel/ruby-activemodel32/distinfo                             1.5
- devel/ruby-activesupport32/distinfo                           1.5
- devel/ruby-railties32/distinfo                                1.5
- lang/ruby/rails.mk                                            1.27
- mail/ruby-actionmailer32/distinfo                             1.5
- www/ruby-actionpack32/distinfo                                1.5
- www/ruby-activeresource32/distinfo                            1.5
- www/ruby-rails32/distinfo                                     1.5

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:50:28 UTC 2012

   Modified Files:
   	pkgsrc/lang/ruby: rails.mk

   Log message:
   Start update of Ruby on Rails 3.2.7.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:51:18 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activesupport32: distinfo

   Log message:
   Update ruby-activesupport32 to 3.2.7.

   ## Rails 3.2.7 (unreleased)

   * Hash#fetch(fetch) is not the same as doing hash[key]
   * adds a missing require [fixes #6896]
   * make sure the inflection rules are loaded when cherry-picking
     active_support/core_ext/string/inflections.rb [fixes #6884]
   * Merge pull request #6857 from rsutphin/as_core_ext_time_missing_require
   * bump AS deprecation_horizon to 4.0

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:52:25 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activemodel32: distinfo

   Log message:
   Update ruby-activemodel32 to 3.2.7.

   ## Rails 3.2.7 (unreleased)

   * `validates_inclusion_of` and `validates_exclusion_of` now accept `:within`
     option as alias of `:in` as documented.

   * Fix the the backport of the object dup with the ruby 1.9.3p194.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:53:01 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-activeresource32: distinfo

   Log message:
   Update ruby-activeresource32 to 3.2.7.

   ## Rails 3.2.7 (unreleased)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:53:46 UTC 2012

   Modified Files:
   	pkgsrc/databases/ruby-activerecord32: distinfo

   Log message:
   Update ruby-activerecord32 to 3.2.7.

   ## Rails 3.2.7 (unreleased) ##

   *   `:finder_sql` and `:counter_sql` options on collection associations
       are deprecated. Please transition to using scopes.

       *Jon Leighton*

   *   `:insert_sql` and `:delete_sql` options on `has_and_belongs_to_many`
       associations are deprecated. Please transition to using `has_many
       :through`

       *Jon Leighton*

   *   `composed_of` has been deprecated. You'll have to write your own accessor
       and mutator methods if you'd like to use value objects to represent some
       portion of your models.

       *Steve Klabnik*

   *   `update_attribute` has been deprecated. Use `update_column` if
       you want to bypass mass-assignment protection, validations, callbacks,
       and touching of updated_at. Otherwise please use `update_attributes`.

       *Steve Klabnik*

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:55:32 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-actionpack32: distinfo

   Log message:
   Update ruby-actionpack32 to 3.2.7.

   ## Rails 3.2.7 (unreleased) ##

   * Do not convert digest auth strings to symbols. CVE-2012-3424

   * Bump Journey requirements to 1.0.4

   * Add support for optional root segments containing slashes

   * Fixed bug creating invalid HTML in select options

   * Show in log correct wrapped keys

   * Fix NumberHelper options wrapping to prevent verbatim blocks being rendered
     instead of line continuations.

   * ActionController::Metal doesn't have logger method, check it and then
     delegate

   * ActionController::Caching depends on RackDelegation and
     AbstractController::Callbacks

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:56:13 UTC 2012

   Modified Files:
   	pkgsrc/mail/ruby-actionmailer32: distinfo

   Log message:
   Update ruby-actionmailer32 to 3.2.7.

   ## Rails 3.2.7 (unreleased)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:56:46 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-railties32: distinfo

   Log message:
   Update ruby-railties32 to 3.2.7.

   ## Rails 3.2.7 (unreleased)

   * Since Rails 3.2, use layout false to render no layout
   * Use strict_args_position! if available from Thor

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:57:33 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-rails32: distinfo

   Log message:
   Update Update ruby-rails32 to 3.2.17.

   This is a meta-like package and no changes.
   2012-08-12 16:26:15 by Matthias Scheler | Files touched by this commit (9) | Package updated
Log message:
Pullup ticket #3895 - requested by taca
databases/ruby-activerecord31: security update
devel/ruby-activemodel31: security update
devel/ruby-activesupport31: security update
devel/ruby-railties31: security update
mail/ruby-actionmailer31: security update
www/ruby-actionpack31: security update
www/ruby-activeresource31: security update
www/ruby-rails31: security update

Revisions pulled up:
- databases/ruby-activerecord31/distinfo                        1.5
- devel/ruby-activemodel31/distinfo                             1.5
- devel/ruby-activesupport31/distinfo                           1.6
- devel/ruby-railties31/distinfo                                1.5
- lang/ruby/rails.mk                                            1.26
- mail/ruby-actionmailer31/distinfo                             1.5
- www/ruby-actionpack31/distinfo                                1.6
- www/ruby-activeresource31/distinfo                            1.5
- www/ruby-rails31/distinfo                                     1.5

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:34:39 UTC 2012

   Modified Files:
   	pkgsrc/lang/ruby: rails.mk

   Log message:
   Start update of Ruby on Rails 3.1.7.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:35:07 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activesupport31: distinfo

   Log message:
   Update ruby-activesupport31 to 3.1.7.

   ## Rails 3.1.7 (Jul 26, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:35:47 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activemodel31: distinfo

   Log message:
   Update ruby-activemodel31 to 3.1.7.

   ## Rails 3.1.7 (Jul 26, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:36:18 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-activeresource31: distinfo

   Log message:
   Update ruby-activeresource31 to 3.1.7.

   ## Rails 3.1.7 (Jul 26, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:36:59 UTC 2012

   Modified Files:
   	pkgsrc/databases/ruby-activerecord31: distinfo

   Log message:
   Update ruby-activerecord31 to 3.1.7.

   ## Rails 3.1.7 (Jul 26, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:38:13 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-actionpack31: distinfo

   Log message:
   Update ruby-actionpack31 to 3.1.7.

   ## Rails 3.1.7 (Jul 26, 2012)

   * Do not convert digest auth strings to symbols. CVE-2012-3424

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:38:47 UTC 2012

   Modified Files:
   	pkgsrc/mail/ruby-actionmailer31: distinfo

   Log message:
   Update ruby-actionmailer31 to 3.1.7.

   ## Rails 3.1.7 (Jul 26, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:39:16 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-railties31: distinfo

   Log message:
   Update ruby-railties31 to 3.1.7.

   ## Rails 3.1.7 (Jul 26, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:41:23 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-rails31: distinfo

   Log message:
   Update Update ruby-rails31 to 3.1.17.

   This is a meta-like package and no changes.
   2012-08-12 16:06:58 by Matthias Scheler | Files touched by this commit (10) | Package updated
Log message:
Pullup ticket #3894 - requested by taca
databases/ruby-activerecord3: security update
devel/ruby-activemodel: security update
devel/ruby-activesupport3: security update
devel/ruby-railties: security update
mail/ruby-actionmailer3: security update
mail/ruby-mail22/Makefile
www/ruby-actionpack3: security update
www/ruby-activeresource3: security update
www/ruby-rails3: security update

Revisions pulled up:
- databases/ruby-activerecord3/distinfo                         1.14
- devel/ruby-activemodel/distinfo                               1.14
- devel/ruby-activesupport3/distinfo                            1.15
- devel/ruby-railties/distinfo                                  1.14
- lang/ruby/rails.mk                                            1.25
- mail/ruby-actionmailer3/distinfo                              1.16
- mail/ruby-mail22/Makefile                                     1.5
- www/ruby-actionpack3/distinfo                                 1.15
- www/ruby-activeresource3/distinfo                             1.14
- www/ruby-rails3/distinfo                                      1.15

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:20:08 UTC 2012

   Modified Files:
   	pkgsrc/lang/ruby: rails.mk

   Log message:
   Start update of Ruby on Rails to 3.0.16.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:21:03 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activesupport3: distinfo

   Log message:
   Update ruby-activesupport3 to 3.0.16.

   ## Rails 3.0.16 (Jul 26, 2012)

   *   No changes.

   ## Rails 3.0.14 (Jun 12, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:21:54 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-activemodel: distinfo

   Log message:
   Update ruby-activemodel to 3.0.16.

   ## Rails 3.0.16 (Jul 26, 2012)

   *   No changes.

   ## Rails 3.0.14 (Jun 12, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:22:56 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-activeresource3: distinfo

   Log message:
   Update ruby-activeresource3 to 3.0.16.

   ## Rails 3.0.16 (Jul 26, 2012)

   *   No changes.

   ## Rails 3.0.14 (Jun 12, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:24:29 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-actionpack3: distinfo

   Log message:
   Update ruby-actionpack3 to 3.0.16.

   ## Rails 3.0.16 (Jul 26, 2012)

   * Do not convert digest auth strings to symbols. CVE-2012-3424

   ## Rails 3.0.14 (Jun 12, 2012)

   *   nil is removed from array parameter values

       CVE-2012-2694

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:25:14 UTC 2012

   Modified Files:
   	pkgsrc/databases/ruby-activerecord3: distinfo

   Log message:
   Update ruby-activerecord3 to 3.0.16.

   ## Rails 3.0.16 (Jul 26, 2012)

   *   No changes.

   ## Rails 3.0.14 (Jun 12, 2012)

   *   protect against the nesting of hashes changing the
       table context in the next call to build_from_hash. This fix
       covers this case as well.

       CVE-2012-2695

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:25:49 UTC 2012

   Modified Files:
   	pkgsrc/mail/ruby-actionmailer3: distinfo

   Log message:
   Update ruby-actionmailer3 to 3.0.16.

   ## Rails 3.0.16 (Jul 26, 2012)

   *   No changes.

   ## Rails 3.0.14 (Jun 12, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:26:47 UTC 2012

   Modified Files:
   	pkgsrc/devel/ruby-railties: distinfo

   Log message:
   Update ruby-railties to 3.0.16.

   ## Rails 3.0.16 (Jul 26, 2012)

   *   No changes.

   ## Rails 3.0.14 (Jun 12, 2012)

   *   No changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 12:27:36 UTC 2012

   Modified Files:
   	pkgsrc/www/ruby-rails3: distinfo

   Log message:
   Update ruby-rails3 to 3.0.16.

   This is a meta-like package and no changes.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Jul 31 13:02:49 UTC 2012

   Modified Files:
   	pkgsrc/mail/ruby-mail22: Makefile

   Log message:
   Bump PKGREVISION to reflect dependency to devel/ruby-activesupport3.

Next | Query returned 6 messages, browsing 1 to 10 | previous