Skip to content

v6.0.6.1
Compare
Choose a tag to compare
@jhawthorn jhawthorn released this 17 Jan 21:29
· 18662 commits to main since this release
v6.0.6.1
This tag was signed with the committer’s verified signature.
jhawthorn John Hawthorn
GPG key ID: BA613077D1A03FD7
Learn about vigilant mode.
28bb76d

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • Make sanitize_as_sql_comment more strict

    Though this method was likely never meant to take user input, it was
    attempting sanitization. That sanitization could be bypassed with
    carefully crafted input.

    This commit makes the sanitization more robust by replacing any
    occurrances of "/" or "/" with "/ " or " /". It also performs a
    first pass to remove one surrounding comment to avoid compatibility
    issues for users relying on the existing removal.

    This also clarifies in the documentation of annotate that it should not
    be provided user input.

    [CVE-2023-22794]

Action View

  • No changes.

Action Pack

  • No changes.

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2