stable

rubygem-actioncable-6.0.3.3-1.fc33, rubygem-actionmailbox-6.0.3.3-1.fc33, & 12 more

FEDORA-2020-4dd34860a3 created by pvalena 4 years ago for Fedora 33

Upgrade to Ruby on Rails 6.0.3.3. Fixes CVEs: #1877568 #1831529 #1852381

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2020-4dd34860a3

This update's test gating status has been changed to 'waiting'.

4 years ago

This update's test gating status has been changed to 'ignored'.

4 years ago

This update has been submitted for testing by pvalena.

4 years ago

This update has been pushed to testing.

4 years ago

This update can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by bodhi.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

BZ#1831529 CVE-2020-5267 rubygem-actionview: views that use the `j` or `escape_javascript` methods are susceptible to XSS attacks [fedora-all]
0
0
BZ#1852381 CVE-2020-8185 rubygem-rails: untrusted users able to run pending migrations in production [fedora-all]
0
0
BZ#1877568 CVE-2020-15169 rubygem-actionview: rubygem-activeview: Cross-site scripting in translation helpers [fedora-all]
0
0

Automated Test Results