Advertisement

Tutorials

Home News Rails 1.1.5 Released to Patch ...

News by CGIDir


Rails 1.1.5 Released to Patch Serious Vulnerability

 


"It’s not a suggestion, it’s a prescription."

CGIDir
Thursday, August 10, 2006; 05:03 AM

Rails 1.1.5 has been released to address a serious security flaw in the development framework. The versions affected are 1.1.0, 1.1.1, 1.1.2, and 1.1.4. The update is available at rubyonrails.org .

From the official announcement: "This is a MANDATORY upgrade for anyone not running on a very recent edge (which isn’t affected by this). If you have a public Rails site, you MUST upgrade to Rails 1.1.5. The security issue is severe and you do not want to be caught unpatched. The issue is in fact of such a criticality that we’re not going to dig into the specifics. No need to arm would-be assalients."

Ruby on Rails is an open-source framework, originally released by 37signals, which lets developers easily assemble rich and dynamic web sites. Programming with Rails allows a web designer to wrap applications easily around a database. It has been widely acclaimed in web development.

Advertisement

Partners

Related Resources

Other Resources

image arrow