[DRE-maint] Bug#684454: ruby-actionpack-3.2: CVE-2012-3463 / CVE-2012-3464 / CVE-2012-3465
Moritz Muehlenhoff
jmm at inutil.org
Fri Aug 10 07:22:16 UTC 2012
Package: ruby-actionpack-3.2
Severity: grave
Tags: security
Justification: user security hole
Please see
CVE-2012-3465
http://www.openwall.com/lists/oss-security/2012/08/09/9
CVE-2012-3464
http://www.openwall.com/lists/oss-security/2012/08/09/10
CVE-2012-3463
http://www.openwall.com/lists/oss-security/2012/08/09/8
Since Wheezy is frozen, please use the isolated patches instead of updating to
3.2.8
Cheers,
Moritz
More information about the Pkg-ruby-extras-maintainers
mailing list