Skip to content

Releases: rails/rails

6.0.4.7

08 Mar 21:54
@rafaelfranca rafaelfranca
v6.0.4.7
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
4ba546e
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
6.0.4.7

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • No changes.

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • Added image transformation validation via configurable allow-list.

    Variant now offers a configurable allow-list for
    transformation methods in addition to a configurable deny-list for arguments.

    [CVE-2022-21831]

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2

5.2.6.3

08 Mar 21:53
@rafaelfranca rafaelfranca
v5.2.6.3
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
b287570
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
5.2.6.3

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • No changes.

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • Added image transformation validation via configurable allow-list.

    Variant now offers a configurable allow-list for
    transformation methods in addition to a configurable deny-list for arguments.

    [CVE-2022-21831]

Railties

  • No changes.
Assets 2

7.0.2.2

08 Mar 21:52
@rafaelfranca rafaelfranca
v7.0.2.2
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
2459c20
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
7.0.2.2

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Fix Reloader method signature to work with the new Executor signature

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2

7.0.2.1

08 Mar 21:51
@rafaelfranca rafaelfranca
v7.0.2.1
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
365e0fe
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
7.0.2.1

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Under certain circumstances, the middleware isn't informed that the
    response body has been fully closed which result in request state not
    being fully reset before the next request

    [CVE-2022-23633]

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2

6.1.4.6

08 Mar 21:49
@rafaelfranca rafaelfranca
v6.1.4.6
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
10a2c77
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
6.1.4.6

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Fix Reloader method signature to work with the new Executor signature

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2

6.1.4.5

08 Mar 21:49
@rafaelfranca rafaelfranca
v6.1.4.5
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
6d25fed
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
6.1.4.5

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Under certain circumstances, the middleware isn't informed that the
    response body has been fully closed which result in request state not
    being fully reset before the next request

    [CVE-2022-23633]

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2

6.0.4.6

08 Mar 21:47
@rafaelfranca rafaelfranca
v6.0.4.6
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
5f85a37
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
6.0.4.6

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Fix Reloader method signature to work with the new Executor signature

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2

6.0.4.5

08 Mar 21:46
@rafaelfranca rafaelfranca
v6.0.4.5
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
c06fa92
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
6.0.4.5

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Under certain circumstances, the middleware isn't informed that the
    response body has been fully closed which result in request state not
    being fully reset before the next request

    [CVE-2022-23633]

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Action Mailbox

  • No changes.

Action Text

  • No changes.

Railties

  • No changes.
Assets 2

5.2.6.2

08 Mar 21:43
@rafaelfranca rafaelfranca
v5.2.6.2
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
46fe51b
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
5.2.6.2

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Fix Reloader method signature to work with the new Executor signature

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Railties

  • No changes.
Assets 2

5.2.6.1

08 Mar 21:42
@rafaelfranca rafaelfranca
v5.2.6.1
This tag was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
9c111dc
This commit was signed with the committer’s verified signature.
tenderlove Aaron Patterson
GPG key ID: 953170BCB4FFAFC6
Learn about vigilant mode.
Compare
Choose a tag to compare
5.2.6.1

Active Support

  • No changes.

Active Model

  • No changes.

Active Record

  • No changes.

Action View

  • No changes.

Action Pack

  • Under certain circumstances, the middleware isn't informed that the
    response body has been fully closed which result in request state not
    being fully reset before the next request

    [CVE-2022-23633]

Active Job

  • No changes.

Action Mailer

  • No changes.

Action Cable

  • No changes.

Active Storage

  • No changes.

Railties

  • No changes.
Assets 2