[v2.4] Vulnerability in ruby ActiveRecord < 3.2.12,2.3.17 allows authentication bypass
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0276
Solution:
- Upgrade to 3.2.12 (edge, v2.5)
- Upgrade to 2.3.17 (v2.4-v2.2)
(from redmine: issue id 1687, created on 2013-03-19, closed on 2013-04-17)
- Changesets:
- Revision 37b51621 by Natanael Copa on 2013-04-12T08:33:53Z:
main/ruby-activerecord: security upgrade to 2.3.17 (CVE-2013-0276)
fixes #1687