Bug#834154: rails: CVE-2016-6317: unsafe query generation in Active Record

Salvatore Bonaccorso Fri, 12 Aug 2016 08:16:03 -0700

Source: rails
Version: 2:4.2.6-2
Severity: important
Tags: security upstream


Hi,

the following vulnerability was published for rails.

CVE-2016-6317[0]:
unsafe query generation in Active Record

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2016-6317
[1] 
https://groups.google.com/forum/#!msg/rubyonrails-security/rgO20zYW33s/gmamLa-wDAAJ

Regards,
Salvatore

Bug#834154: rails: CVE-2016-6317: unsafe query generation in Active Record

Reply via email to