activerecord 5.2.4.3 → 5.2.6

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.


This version of activerecord might be problematic. Click here for more details.

checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 53026adc50898a819677e9b8e756dce17b86381169f06e113b0a4b61de1b4a0d
4
- data.tar.gz: fbcb8489afc63ab946993ca9c4cea9bcbb72091cf8b0c773dd2365db186f1257
3
+ metadata.gz: c89677cc90fc43ae97552359837dfe44ad6e1ce6334050e4b39785385b810ba3
4
+ data.tar.gz: 4af06aec9bb0548a91db3b9f47376040f7dd7ba51b5826ef78ad54d7af441858
5
5
  SHA512:
6
- metadata.gz: ae5d30ec10516842e67813496fd04e81e5c284551d0a25ff9051c1801ad34350b43c6a6b810e23c11a01e5a2c4e74019de9e7c177a8144ea607c05b8c855b9c4
7
- data.tar.gz: 6ed32251132d5c3464f8829656e5865e0424949e498ebdbed1490b664562b4cabe3788d07b11c5af152d2e814d1b9197b4d76180c7c8b5b393d0f4468a11f58f
6
+ metadata.gz: becac0be95270f15be72938b50450e0913f46dc8a0e64805e2d9fb1165e2b6a46d6be4df4eb6faa1f8e0cf5740a74ed05c89d8e165835488bcdaa7b42157073e
7
+ data.tar.gz: 68692c07b65288b74ff1a55af76fd92846109c874cbaad1f66252461d96739865864fbf842d8e56169fddf0dd1ac935aed1e5ffc78cbac2669e20d1b478e0492
data/CHANGELOG.md CHANGED
@@ -1,7 +1,46 @@
1
+ ## Rails 5.2.6 (May 05, 2021) ##
2
+
3
+ * No changes.
4
+
5
+
6
+ ## Rails 5.2.5 (March 26, 2021) ##
7
+
8
+ * No changes.
9
+
10
+
11
+ ## Rails 5.2.4.6 (May 05, 2021) ##
12
+
13
+ * No changes.
14
+
15
+
16
+ ## Rails 5.2.4.5 (February 10, 2021) ##
17
+
18
+ * Fix possible DoS vector in PostgreSQL money type
19
+
20
+ Carefully crafted input can cause a DoS via the regular expressions used
21
+ for validating the money format in the PostgreSQL adapter. This patch
22
+ fixes the regexp.
23
+
24
+ Thanks to @dee-see from Hackerone for this patch!
25
+
26
+ [CVE-2021-22880]
27
+
28
+ *Aaron Patterson*
29
+
30
+
31
+ ## Rails 5.2.4.4 (September 09, 2020) ##
32
+
33
+ * No changes.
34
+
35
+
1
36
  ## Rails 5.2.4.3 (May 18, 2020) ##
2
37
 
3
38
  * No changes.
4
39
 
40
+ ## Rails 5.2.4.2 (March 19, 2020) ##
41
+
42
+ * No changes.
43
+
5
44
 
6
45
  ## Rails 5.2.4.1 (December 18, 2019) ##
7
46
 
@@ -26,9 +26,9 @@ module ActiveRecord
26
26
 
27
27
  value = value.sub(/^\((.+)\)$/, '-\1') # (4)
28
28
  case value
29
- when /^-?\D+[\d,]+\.\d{2}$/ # (1)
29
+ when /^-?\D*+[\d,]+\.\d{2}$/ # (1)
30
30
  value.gsub!(/[^-\d.]/, "")
31
- when /^-?\D+[\d.]+,\d{2}$/ # (2)
31
+ when /^-?\D*+[\d.]+,\d{2}$/ # (2)
32
32
  value.gsub!(/[^-\d,]/, "").sub!(/,/, ".")
33
33
  end
34
34
 
@@ -9,8 +9,8 @@ module ActiveRecord
9
9
  module VERSION
10
10
  MAJOR = 5
11
11
  MINOR = 2
12
- TINY = 4
13
- PRE = "3"
12
+ TINY = 6
13
+ PRE = nil
14
14
 
15
15
  STRING = [MAJOR, MINOR, TINY, PRE].compact.join(".")
16
16
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: activerecord
3
3
  version: !ruby/object:Gem::Version
4
- version: 5.2.4.3
4
+ version: 5.2.6
5
5
  platform: ruby
6
6
  authors:
7
7
  - David Heinemeier Hansson
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2020-05-18 00:00:00.000000000 Z
11
+ date: 2021-05-05 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: activesupport
@@ -16,28 +16,28 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 5.2.4.3
19
+ version: 5.2.6
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 5.2.4.3
26
+ version: 5.2.6
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: activemodel
29
29
  requirement: !ruby/object:Gem::Requirement
30
30
  requirements:
31
31
  - - '='
32
32
  - !ruby/object:Gem::Version
33
- version: 5.2.4.3
33
+ version: 5.2.6
34
34
  type: :runtime
35
35
  prerelease: false
36
36
  version_requirements: !ruby/object:Gem::Requirement
37
37
  requirements:
38
38
  - - '='
39
39
  - !ruby/object:Gem::Version
40
- version: 5.2.4.3
40
+ version: 5.2.6
41
41
  - !ruby/object:Gem::Dependency
42
42
  name: arel
43
43
  requirement: !ruby/object:Gem::Requirement
@@ -307,8 +307,8 @@ homepage: http://rubyonrails.org
307
307
  licenses:
308
308
  - MIT
309
309
  metadata:
310
- source_code_uri: https://github.com/rails/rails/tree/v5.2.4.3/activerecord
311
- changelog_uri: https://github.com/rails/rails/blob/v5.2.4.3/activerecord/CHANGELOG.md
310
+ source_code_uri: https://github.com/rails/rails/tree/v5.2.6/activerecord
311
+ changelog_uri: https://github.com/rails/rails/blob/v5.2.6/activerecord/CHANGELOG.md
312
312
  post_install_message:
313
313
  rdoc_options:
314
314
  - "--main"
@@ -326,7 +326,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
326
326
  - !ruby/object:Gem::Version
327
327
  version: '0'
328
328
  requirements: []
329
- rubygems_version: 3.1.2
329
+ rubygems_version: 3.1.6
330
330
  signing_key:
331
331
  specification_version: 4
332
332
  summary: Object-relational mapper framework (part of Rails).