[Unknown description]
Author | Note |
---|---|
seth-arnold | In Oneiric-Saucy, rails package is just for transition; The rails package contains actual code from vivid onward |
discuss.rubyonrails.org/t/cve-2023-28120-possible-xss-security-vulnerability-in-safebuffer-bytesplice/82469
github.com/rails/rails/commit/3cf23c3f891e2e81c977ea4ab83b62bc2a444b70 (v6.1.7.3)
launchpad.net/bugs/cve/CVE-2023-28120
nvd.nist.gov/vuln/detail/CVE-2023-28120
security-tracker.debian.org/tracker/CVE-2023-28120
www.cve.org/CVERecord?id=CVE-2023-28120