Good news everyone! Rails version 3.1.8 has been released.
This release of Rails contains three important security fixes:
- CVE-2012-3463 Ruby on Rails Potential XSS Vulnerability in
select_tag
prompt - CVE-2012-3464 Potential XSS Vulnerability in Ruby on
Rails - CVE-2012-3465 XSS Vulnerability in
strip_tags
All changes can be found on
github.
Thanks everyone!
–
Santiago Pastorino
WyeWorks Co-founder
Twitter: http://twitter.com/spastorino
Github: spastorino (Santiago Pastorino) · GitHub