Bug 731448

Summary: rubygem-actionpack various flaws [fedora-all]
Product: [Fedora] Fedora Reporter: Vincent Danen <vdanen>
Component: rubygem-actionpackAssignee: Mo Morsi <mmorsi>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: medium Docs Contact:
Priority: medium    
Version: 15CC: mastahnke, mmorsi, sseago, vanmeeuwen+fedora, vondruch
Target Milestone: ---Keywords: Security, SecurityTracking
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Release Note
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-09-08 05:37:01 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 731432, 731436    

Description Vincent Danen 2011-08-17 17:25:41 UTC 
fedora-15 tracking bug for rubygem-actionpack: see blocks bug list for full details of the security issue(s).

This bug is never intended to be made public, please put any public notes
in the 'blocks' bugs.


[bug automatically created by: add-tracking-bugs]
Comment 1 Vincent Danen 2011-08-17 17:25:58 UTC 
    Adding parent bug 731436
    New bodhi update url:
    https://admin.fedoraproject.org/updates/new/?type_=security&bugs=731432,731436
Comment 2 Huzaifa S. Sidhpurwala 2011-09-08 05:37:01 UTC 
This issue has been addressed in Fedora-14, Fedora-15 and upcoming Fedora-16
via the following advisories:

fedora-14:
https://admin.fedoraproject.org/updates/rubygem-actionpack-2.3.8-4.fc14

fedora-15:
https://admin.fedoraproject.org/updates/rubygem-actionpack-3.0.5-4.fc15

fedora-16:
https://admin.fedoraproject.org/updates/rubygem-activesupport-3.0.10-1.fc16,rubygem-activemodel-3.0.10-1.fc16,rubygem-activerecord-3.0.10-1.fc16,rubygem-activeresource-3.0.10-1.fc16,rubygem-actionpack-3.0.10-1.fc16,rubygem-actionmailer-3.0.10-1.fc16,rubygem-railties-3.0.10-1.fc16,rubygem-rails-3.0.10-1.fc16