Project

General

Profile

Bug #13372

Update Rails to 3.2.22.1

Added by Dominic Cleal over 6 years ago. Updated over 6 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
Rails
Target version:
-
Difficulty:
Triaged:
No
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:

Description

Rails should be updated to 3.2.22.1 to provide fixes for a number of CVEs (http://weblog.rubyonrails.org/2016/1/25/Rails-5-0-0-beta1-1-4-2-5-1-4-1-14-1-3-2-22-1-and-rails-html-sanitizer-1-0-3-have-been-released/).

This bug is only applicable to the 1.10-stable branch.


Related issues

Related to Foreman Remote Execution - Bug #13666: Partials in app/overrides must be moved into a views pathClosed2016-02-11
Blocked by Katello - Bug #13592: Partial ../overrides/foreman/activation_keys/_host_tab accessed outside of view pathsClosed2016-02-08

History

#1 Updated by Dominic Cleal over 6 years ago

  • Blocked by Bug #13592: Partial ../overrides/foreman/activation_keys/_host_tab accessed outside of view paths added

#2 Updated by Dominic Cleal over 6 years ago

  • Related to Bug #13666: Partials in app/overrides must be moved into a views path added

#3 Updated by Dominic Cleal over 6 years ago

This might have to be rejected, as apipie-rails has a bug (#13710) that would probably affect 1.10-stable. It's a bit worse here too, because 1.10-stable's pinned to apipie-rails 0.2.x - it'd probably be safe to update, but we've not used that combination heavily.

#4 Updated by Dominic Cleal over 6 years ago

  • Status changed from New to Rejected
  • Legacy Backlogs Release (now unused) deleted (123)

Rejecting this for now as I think the potential for breaking plugins is a bit too great.

Also available in: Atom PDF