diff options
-rw-r--r-- | actionpack-CVE-2012-1098-safe-buffer-slice.patch (renamed from actionpack-safe-buffer-slice-fix.patch) | 0 | ||||
-rw-r--r-- | actionpack-CVE-2012-1099-select-options-XSS.patch (renamed from actionpack-select-options-XSS-fix.patch) | 0 | ||||
-rw-r--r-- | rubygem-actionpack.spec | 9 |
3 files changed, 6 insertions, 3 deletions
diff --git a/actionpack-safe-buffer-slice-fix.patch b/actionpack-CVE-2012-1098-safe-buffer-slice.patch index 3eaca8d..3eaca8d 100644 --- a/actionpack-safe-buffer-slice-fix.patch +++ b/actionpack-CVE-2012-1098-safe-buffer-slice.patch diff --git a/actionpack-select-options-XSS-fix.patch b/actionpack-CVE-2012-1099-select-options-XSS.patch index f0211c0..f0211c0 100644 --- a/actionpack-select-options-XSS-fix.patch +++ b/actionpack-CVE-2012-1099-select-options-XSS.patch diff --git a/rubygem-actionpack.spec b/rubygem-actionpack.spec index b76cdd8..d8f2661 100644 --- a/rubygem-actionpack.spec +++ b/rubygem-actionpack.spec @@ -7,7 +7,7 @@ Summary: Web-flow and rendering framework putting the VC in MVC Name: rubygem-%{gem_name} Epoch: 1 Version: 3.0.11 -Release: 2%{?dist} +Release: 3%{?dist} Group: Development/Languages License: MIT URL: http://www.rubyonrails.org @@ -38,11 +38,11 @@ Patch3: actionpack-downgrade-dependencies.patch # Fixes CVE-2012-1098 # https://bugzilla.redhat.com/show_bug.cgi?id=799275 -Patch4: actionpack-safe-buffer-slice-fix.patch +Patch4: actionpack-CVE-2012-1098-safe-buffer-slice.patch # Fixes CVE-2012-1099 # https://bugzilla.redhat.com/show_bug.cgi?id=799276 -Patch5: actionpack-select-options-XSS-fix.patch +Patch5: actionpack-CVE-2012-1099-select-options-XSS.patch Requires: ruby(rubygems) Requires: rubygem(activesupport) = %{version} @@ -175,6 +175,9 @@ rake test --trace %changelog +* Fri Mar 16 2012 Bohuslav Kabrda <bkabrda@redhat.com> - 1:3.0.11-3 +- The CVE patches names now contain the CVE id. + * Tue Mar 06 2012 Bohuslav Kabrda <bkabrda@redhat.com> - 1:3.0.11-2 - Fix for CVE-2012-1098. - Fix for CVE-2012-1099. |