[v2.6] Vulnerability in ruby ActiveRecord < 3.2.12,2.3.17 allows authentication bypass
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0276
Solution:
- Upgrade to 3.2.12 (edge, v2.5)
- Upgrade to 2.3.17 (v2.4-v2.2)
(from redmine: issue id 1685, created on 2013-03-19, closed on 2013-04-17)
- Changesets:
- Revision 1832bde5 by Natanael Copa on 2013-04-12T08:32:29Z:
main/ruby-activerecord: security upgrade to 3.2.12 (CVE-2013-0276)
fixes #1685