-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 14 Mar 2025 20:02:55 +0530 Source: rails Binary: rails ruby-actioncable ruby-actionmailbox ruby-actionmailer ruby-actionpack ruby-actiontext ruby-actionview ruby-activejob ruby-activemodel ruby-activerecord ruby-activestorage ruby-activesupport ruby-rails ruby-railties Architecture: all Version: 2:6.1.7.10+dfsg-1~deb12u1 Distribution: bookworm-security Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) Changed-By: Utkarsh Gupta Description: rails - MVC ruby based framework geared for web application development ( ruby-actioncable - WebSocket framework for Rails (part of Rails) ruby-actionmailbox - receive and process incoming emails (part of Rails) ruby-actionmailer - email composition, delivery framework (part of Rails) ruby-actionpack - web-flow and rendering framework putting the VC in MVC (part of R ruby-actiontext - edit and display rich text (part of Rails) ruby-actionview - framework for handling view template lookup and rendering (part o ruby-activejob - job framework with pluggable queues (part of Rails) ruby-activemodel - toolkit for building modeling frameworks (part of Rails) ruby-activerecord - object-relational mapper framework (part of Rails) ruby-activestorage - local and cloud file storage framework (part of Rails) ruby-activesupport - collection of utility classes used by the Rails framework ruby-rails - MVC ruby based framework geared for web application development ruby-railties - tools for creating, working with, and running Rails applications Closes: 1051057 1051058 1065119 1072705 1085376 1089755 Changes: rails (2:6.1.7.10+dfsg-1~deb12u1) bookworm-security; urgency=medium . * New upstream version 6.1.7.10+dfsg. (Fixes: CVE-2023-28362, CVE-2023-38037, CVE-2024-26144, CVE-2024-28103, CVE-2024-41128, CVE-2024-47887, CVE-2024-47888, CVE-2024-47889) (Closes: #1051058, #1051057, 1065119, #1072705, #1085376) * Add patch to add CSP directive validation. (Fixes: CVE-2024-54133) (Closes: #1089755) Checksums-Sha1: 3250b58d01cf36a2433ddd63d9499902610aefed 36597 rails_6.1.7.10+dfsg-1~deb12u1_all-buildd.buildinfo 6d6c7e5f2cc86d30ee9df2264790bf200615d5a6 18112 rails_6.1.7.10+dfsg-1~deb12u1_all.deb be44b5a345b047b299b96f3a05348111bbc02669 57564 ruby-actioncable_6.1.7.10+dfsg-1~deb12u1_all.deb d3a67b65730c35758929ccbd60b97c779e6901f3 36968 ruby-actionmailbox_6.1.7.10+dfsg-1~deb12u1_all.deb 2997184cf0cc12641788ff737b9d39865407d3b7 42924 ruby-actionmailer_6.1.7.10+dfsg-1~deb12u1_all.deb 4d1f907af41ec3d5d38a243a9d1e12efe8255db8 204820 ruby-actionpack_6.1.7.10+dfsg-1~deb12u1_all.deb 09f75327890fc10ff9f9783d65c90b8bc7b22add 33180 ruby-actiontext_6.1.7.10+dfsg-1~deb12u1_all.deb 7432e4905ac91834f90a43fbb36e65d5f59c252d 153352 ruby-actionview_6.1.7.10+dfsg-1~deb12u1_all.deb 7ef39297d9f9f4ca4a32cc00fd429561f9ab9db3 44876 ruby-activejob_6.1.7.10+dfsg-1~deb12u1_all.deb 6d5aeaabfe2a2df0146758abc8fc61070d7f2f58 70224 ruby-activemodel_6.1.7.10+dfsg-1~deb12u1_all.deb 394c1dce427dcb0aad9ab33c3652758b986698c3 365332 ruby-activerecord_6.1.7.10+dfsg-1~deb12u1_all.deb f22bd7b593c25435ab8a0f594a1fa1e27ac1e082 69224 ruby-activestorage_6.1.7.10+dfsg-1~deb12u1_all.deb 8ea8f5b54f0a9671c1da505db95cc24b34dc06f8 202336 ruby-activesupport_6.1.7.10+dfsg-1~deb12u1_all.deb 82a7d973d37c012930fa05fc70270b75b07948f0 25604 ruby-rails_6.1.7.10+dfsg-1~deb12u1_all.deb 0050c6f4662c535d70233627909853e8bc2f87a6 453564 ruby-railties_6.1.7.10+dfsg-1~deb12u1_all.deb Checksums-Sha256: bf8ba467b7c7a88325946b0fa05dccf14597d152118c5652320419a808a648c0 36597 rails_6.1.7.10+dfsg-1~deb12u1_all-buildd.buildinfo 9e0e2a7fd4176b1dd6d43976c9d5c9ed2a0dbab9964e213cf3dabecdec6bf0f8 18112 rails_6.1.7.10+dfsg-1~deb12u1_all.deb 7340a200e0811bcaa5e03d5e41e5773f7ff790dd5f9a8d25be03521647cddee4 57564 ruby-actioncable_6.1.7.10+dfsg-1~deb12u1_all.deb b4939d66bb39c66efa744654443571cea82b1bf5765574b80c3f7e5012450697 36968 ruby-actionmailbox_6.1.7.10+dfsg-1~deb12u1_all.deb 60636fdb0bd8aae1b12a606e4abf1c81778fc684c650f6f6563e106c3405dc2e 42924 ruby-actionmailer_6.1.7.10+dfsg-1~deb12u1_all.deb aa8dc9459184d5ec14ca9f1b6abaf5d6e667901e2c84ecbf946a584fbd8652e0 204820 ruby-actionpack_6.1.7.10+dfsg-1~deb12u1_all.deb 5de959a92558ada0cafdd0a6a4475482784ae0bd0b64ee2a8b8b4e3b3837069d 33180 ruby-actiontext_6.1.7.10+dfsg-1~deb12u1_all.deb 3b21746e12523f08ca27805c387bfb76c3877b82c9199dc61ef859d80f4c2ac8 153352 ruby-actionview_6.1.7.10+dfsg-1~deb12u1_all.deb 40177172fc1e14da8cc78f2cbbeb8a31029aea881a1d892daef24a3011f9325a 44876 ruby-activejob_6.1.7.10+dfsg-1~deb12u1_all.deb d22aee76abd4c58cdf5b5914d33f17779617c97a70d41f6062d2047db92ec174 70224 ruby-activemodel_6.1.7.10+dfsg-1~deb12u1_all.deb a1b5ac1e02e6a5042fa8634ebbbc3622e8e2a51ec228aeea1eb980b0dc08a205 365332 ruby-activerecord_6.1.7.10+dfsg-1~deb12u1_all.deb b667270e453b163065803440db5bab11911036c1a3175d89fd21c86a9bf878d0 69224 ruby-activestorage_6.1.7.10+dfsg-1~deb12u1_all.deb 444815fda42ad885021dd472bd8483071e896a087501354722f13ec6fdb069d7 202336 ruby-activesupport_6.1.7.10+dfsg-1~deb12u1_all.deb 83b55abfa47b65fb99fdc52b8bf554942dceecf7201db3b5c205847af3820192 25604 ruby-rails_6.1.7.10+dfsg-1~deb12u1_all.deb 6d8aa4712d84a296b0a39ff0c6b49dc2c2ad2b6bb9bd3e9e18a8cf2bdc5f0d2d 453564 ruby-railties_6.1.7.10+dfsg-1~deb12u1_all.deb Files: 468468950bf45a5878884045f20cfaf7 36597 ruby optional rails_6.1.7.10+dfsg-1~deb12u1_all-buildd.buildinfo 9673899d01d974234d921bd1faee42f6 18112 ruby optional rails_6.1.7.10+dfsg-1~deb12u1_all.deb 01233b1c3b75a5f47558d18df624a30c 57564 ruby optional ruby-actioncable_6.1.7.10+dfsg-1~deb12u1_all.deb fba96b6b661f3a1a0ac5a674c51d2906 36968 ruby optional ruby-actionmailbox_6.1.7.10+dfsg-1~deb12u1_all.deb 1e9ec4c2c6c5767e1b2241c1965196de 42924 ruby optional ruby-actionmailer_6.1.7.10+dfsg-1~deb12u1_all.deb 9c928b397ccc13c6fbb51cd49d001c16 204820 ruby optional ruby-actionpack_6.1.7.10+dfsg-1~deb12u1_all.deb 926d430ef3d7976bd833fddf44ca214f 33180 ruby optional ruby-actiontext_6.1.7.10+dfsg-1~deb12u1_all.deb ca9a540e3fa23ed3786b5dca1345736e 153352 ruby optional ruby-actionview_6.1.7.10+dfsg-1~deb12u1_all.deb 4ad78387ef88b0b4c31bd7de336ac5f8 44876 ruby optional ruby-activejob_6.1.7.10+dfsg-1~deb12u1_all.deb d618c8bf641675fea2b722ba9fddb4c9 70224 ruby optional ruby-activemodel_6.1.7.10+dfsg-1~deb12u1_all.deb 71129216a7b75cbd5d66d66bbd17a729 365332 ruby optional ruby-activerecord_6.1.7.10+dfsg-1~deb12u1_all.deb 01741fb01cd995617b612c751c0d82bc 69224 ruby optional ruby-activestorage_6.1.7.10+dfsg-1~deb12u1_all.deb 2c9594ca4ab476ae0f662a453d5bd498 202336 ruby optional ruby-activesupport_6.1.7.10+dfsg-1~deb12u1_all.deb d1c67803708ccd154ffd28dea3fc5d79 25604 ruby optional ruby-rails_6.1.7.10+dfsg-1~deb12u1_all.deb 8a2596436f1c38341a3982f9b8554c4b 453564 ruby optional ruby-railties_6.1.7.10+dfsg-1~deb12u1_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEgdRoRGwEM09wlaMzOni7ZmUpKEcFAmfVu5AACgkQOni7ZmUp KEeBWRAAmTg6huhWLKOK32SbBHng5tjQ/CiU2GhHaAcIhA83oQOuHpGlTjqb/wf9 NgwmdSPrGMHD+GlRUlazzSa7le8CkwCXXO/BmP0T85L64APH4yS9CAgMVU/2i5dN XtWShIuWvS5yEUv8aCOHvK7ln0FTHejw+ydfLPRXDZAEGgq9PlfPp7Hkz36T+yCC vjD2mkQ268bVe50lim+Gh1RtTkWPInX+amtIk05bvk0SFHmNh78Km+rMRtIucXH3 XSU/6CFCSwKBpfnfh5xZfdkBzndNGZSin6S8kGR5dzqqjzJbHXaKcmdqNjnF5jL0 yAl8wBUZakWbkzHGCQ+/Z0pRtJ/KXjnKeelidfOOZlYGx4Hs+y4R2wgAVgfFPNoi hvs1LKWZQNqLDRc+vLEsVYRGGVxSIgj6h6B12vXhKrBDRpgsu3WCWZG5+rPeUrG8 +nEiNWcAoVp96ihCz4ZZLzeiGe9NTmXqrOTz9bdE7OOia7CX+MwtGqkD6YDsaX3T Gx8QGJeIz+Pel2WiG8ASAuwNQo43DS6NE0CpVIsN0d5+3hs6m9wWH+RF2J/E9t4P 2TsFhzG3DrFQRLkvJ31M1ILXKX84yWeGqJCwFHjUzenKU6nWZADIJD8+DNdDB/2M rW5a+EGjUzDNzky3/mtubJcVo6j6NNhgiAqpeCzjUaIkL/KlnSI= =heP5 -----END PGP SIGNATURE-----