[Unknown description]
Author | Note |
---|---|
seth-arnold | In Oneiric-Saucy, rails package is just for transition; The rails package contains actual code from vivid onward |
discuss.rubyonrails.org/t/cve-2023-28362-possible-xss-via-user-supplied-values-to-redirect-to/83132
github.com/rails/rails/commit/1c3f93d1e90a3475f9ae2377ead25ccf11f71441 (v6.1.7.4)
github.com/rails/rails/commit/69e37c84e3f77d75566424c7d0015172d6a6fac5 (main)
launchpad.net/bugs/cve/CVE-2023-28362
nvd.nist.gov/vuln/detail/CVE-2023-28362
security-tracker.debian.org/tracker/CVE-2023-28362
www.cve.org/CVERecord?id=CVE-2023-28362