Thread: Ruby on Rails 2.3.6 released, rapidly updated to 2.3.7
View Single Post
  #1   (View Single Post)  
Old 24th May 2010
J65nko J65nko is offline
Administrator
  
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,131
Default Ruby on Rails 2.3.6 released, rapidly updated to 2.3.7
From http://www.h-online.com/open/news/it...7-1006057.html

Quote:
After six months of bug fixing, some new features and bridge work to Rails 3, the Rails developers released Ruby on Rails 2.3.6 on Sunday, but have now released 2.3.7 after some bugs were discovered in code back ported from Rails 3.

The bugs were discovered when Nathan Weizenbaum began updating HAML for the new release and found issues with XSS (Cross Site Scripting) prevention. The XSS prevention, based on rails_xss, was one of the updates in 2.3.6 and is used for automatic HTML escaping.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote