Browse files

Fix vulnerabilities described in CVE-2013-0156

See https://groups.google.com/forum/#!topic/rubyonrails-security/61bkgvnSGTQ
for a little explanation on the vulnerabilities as
encountered in rails.

See datamapper/extlib@b4f9817...4540e71
for the respective fixes in extlib.
  • Loading branch information...
1 parent d708cfd commit 3110e9294107b4e1c87690d02e4c983b75b7c38c @snusnu snusnu committed Jan 9, 2013
Showing with 2 additions and 2 deletions.
  1. +1 −1 merb-core/Gemfile
  2. +1 −1 merb-core/merb-core.gemspec
View
2 merb-core/Gemfile
@@ -1,6 +1,6 @@
source "http://rubygems.org"
-gem 'extlib', '>= 0.9.13'
+gem 'extlib', '>= 0.9.16'
gem 'erubis'
gem 'rake'
gem 'rack'
View
2 merb-core/merb-core.gemspec
@@ -30,7 +30,7 @@ Gem::Specification.new do |gem|
] & `git ls-files -z`.split("\0")
# Runtime dependencies
- gem.add_dependency 'extlib', '>= 0.9.13'
+ gem.add_dependency 'extlib', '>= 0.9.16'
gem.add_dependency 'erubis', '>= 2.6.2'
gem.add_dependency 'rake'
gem.add_dependency 'rack'

0 comments on commit 3110e92

Please sign in to comment.