[v2.3] Vulnerability in ruby ActiveRecord < 3.2.12,2.3.17 allows authentication bypass
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0276
Solution:
- Upgrade to 3.2.12 (edge, v2.5)
- Upgrade to 2.3.17 (v2.4-v2.2)
(from redmine: issue id 1688, created on 2013-03-19, closed on 2013-04-17)
- Changesets:
- Revision 80726aa0 by Natanael Copa on 2013-04-12T08:34:05Z:
main/ruby-activerecord: security upgrade to 2.3.17 (CVE-2013-0276)
fixes #1688