http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2695
This update to rubygem-activerecord fixes a SQL injection
caused by mishandling nested parameters . ( CVE-2012-2695
<<a href=βhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2695β>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2695</a>
> )