actionpack 3.0.13.rc1 → 3.0.13
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of actionpack might be problematic. Click here for more details.
- data/CHANGELOG +14 -0
- data/lib/action_dispatch/http/request.rb +22 -0
- data/lib/action_pack/version.rb +1 -1
- metadata +12 -20
data/CHANGELOG
CHANGED
|
@@ -1,3 +1,17 @@
|
|
|
1
|
+
* Rails 3.0.13 (May 31, 2012)
|
|
2
|
+
|
|
3
|
+
* Strip null bytes from Location header
|
|
4
|
+
|
|
5
|
+
* load the encoding converter to work around [ruby-core:41556] when switching
|
|
6
|
+
encodings
|
|
7
|
+
|
|
8
|
+
* Avoid inspecting the whole route set, closes #1525
|
|
9
|
+
|
|
10
|
+
* whitelist protocols for auto_link
|
|
11
|
+
|
|
12
|
+
* Strip [nil] from parameters hash. Thanks to Ben Murphy for reporting this!
|
|
13
|
+
CVE-2012-2660
|
|
14
|
+
|
|
1
15
|
*Rails 3.0.12 (unreleased)*
|
|
2
16
|
|
|
3
17
|
* Fix using `tranlate` helper with a html translation which uses the `:count` option for
|
|
@@ -257,5 +257,27 @@ module ActionDispatch
|
|
|
257
257
|
def local?
|
|
258
258
|
LOCALHOST.any? { |local_ip| local_ip === remote_addr && local_ip === remote_ip }
|
|
259
259
|
end
|
|
260
|
+
|
|
261
|
+
protected
|
|
262
|
+
|
|
263
|
+
# Remove nils from the params hash
|
|
264
|
+
def deep_munge(hash)
|
|
265
|
+
hash.each_value do |v|
|
|
266
|
+
case v
|
|
267
|
+
when Array
|
|
268
|
+
v.grep(Hash) { |x| deep_munge(x) }
|
|
269
|
+
when Hash
|
|
270
|
+
deep_munge(v)
|
|
271
|
+
end
|
|
272
|
+
end
|
|
273
|
+
|
|
274
|
+
keys = hash.keys.find_all { |k| hash[k] == [nil] }
|
|
275
|
+
keys.each { |k| hash[k] = nil }
|
|
276
|
+
hash
|
|
277
|
+
end
|
|
278
|
+
|
|
279
|
+
def parse_query(qs)
|
|
280
|
+
deep_munge(super)
|
|
281
|
+
end
|
|
260
282
|
end
|
|
261
283
|
end
|
data/lib/action_pack/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,15 +1,13 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: actionpack
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
hash:
|
|
5
|
-
prerelease:
|
|
4
|
+
hash: 29
|
|
5
|
+
prerelease:
|
|
6
6
|
segments:
|
|
7
7
|
- 3
|
|
8
8
|
- 0
|
|
9
9
|
- 13
|
|
10
|
-
|
|
11
|
-
- 1
|
|
12
|
-
version: 3.0.13.rc1
|
|
10
|
+
version: 3.0.13
|
|
13
11
|
platform: ruby
|
|
14
12
|
authors:
|
|
15
13
|
- David Heinemeier Hansson
|
|
@@ -17,7 +15,7 @@ autorequire:
|
|
|
17
15
|
bindir: bin
|
|
18
16
|
cert_chain: []
|
|
19
17
|
|
|
20
|
-
date: 2012-05-
|
|
18
|
+
date: 2012-05-31 00:00:00 Z
|
|
21
19
|
dependencies:
|
|
22
20
|
- !ruby/object:Gem::Dependency
|
|
23
21
|
name: activesupport
|
|
@@ -27,14 +25,12 @@ dependencies:
|
|
|
27
25
|
requirements:
|
|
28
26
|
- - "="
|
|
29
27
|
- !ruby/object:Gem::Version
|
|
30
|
-
hash:
|
|
28
|
+
hash: 29
|
|
31
29
|
segments:
|
|
32
30
|
- 3
|
|
33
31
|
- 0
|
|
34
32
|
- 13
|
|
35
|
-
|
|
36
|
-
- 1
|
|
37
|
-
version: 3.0.13.rc1
|
|
33
|
+
version: 3.0.13
|
|
38
34
|
type: :runtime
|
|
39
35
|
version_requirements: *id001
|
|
40
36
|
- !ruby/object:Gem::Dependency
|
|
@@ -45,14 +41,12 @@ dependencies:
|
|
|
45
41
|
requirements:
|
|
46
42
|
- - "="
|
|
47
43
|
- !ruby/object:Gem::Version
|
|
48
|
-
hash:
|
|
44
|
+
hash: 29
|
|
49
45
|
segments:
|
|
50
46
|
- 3
|
|
51
47
|
- 0
|
|
52
48
|
- 13
|
|
53
|
-
|
|
54
|
-
- 1
|
|
55
|
-
version: 3.0.13.rc1
|
|
49
|
+
version: 3.0.13
|
|
56
50
|
type: :runtime
|
|
57
51
|
version_requirements: *id002
|
|
58
52
|
- !ruby/object:Gem::Dependency
|
|
@@ -362,14 +356,12 @@ required_ruby_version: !ruby/object:Gem::Requirement
|
|
|
362
356
|
required_rubygems_version: !ruby/object:Gem::Requirement
|
|
363
357
|
none: false
|
|
364
358
|
requirements:
|
|
365
|
-
- - "
|
|
359
|
+
- - ">="
|
|
366
360
|
- !ruby/object:Gem::Version
|
|
367
|
-
hash:
|
|
361
|
+
hash: 3
|
|
368
362
|
segments:
|
|
369
|
-
-
|
|
370
|
-
|
|
371
|
-
- 1
|
|
372
|
-
version: 1.3.1
|
|
363
|
+
- 0
|
|
364
|
+
version: "0"
|
|
373
365
|
requirements:
|
|
374
366
|
- none
|
|
375
367
|
rubyforge_project: actionpack
|