rpms/rubygem-actionpack/EL-5 rubygem-actionpack-2.2.x-strip_tag-for-nonprintable.patch, 1.1, 1.2 rubygem-actionpack.spec, 1.8, 1.9
Mamoru Tasaka
mtasaka at fedoraproject.org
Sun Dec 6 17:38:02 UTC 2009
Author: mtasaka
Update of /cvs/extras/rpms/rubygem-actionpack/EL-5
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv7143
Modified Files:
rubygem-actionpack-2.2.x-strip_tag-for-nonprintable.patch
rubygem-actionpack.spec
Log Message:
fix patch
rubygem-actionpack-2.2.x-strip_tag-for-nonprintable.patch:
node.rb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
Index: rubygem-actionpack-2.2.x-strip_tag-for-nonprintable.patch
===================================================================
RCS file: /cvs/extras/rpms/rubygem-actionpack/EL-5/rubygem-actionpack-2.2.x-strip_tag-for-nonprintable.patch,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -p -r1.1 -r1.2
--- rubygem-actionpack-2.2.x-strip_tag-for-nonprintable.patch 6 Dec 2009 17:05:37 -0000 1.1
+++ rubygem-actionpack-2.2.x-strip_tag-for-nonprintable.patch 6 Dec 2009 17:38:02 -0000 1.2
@@ -6,6 +6,7 @@ Subject: [PATCH] Make sure strip_tags re
Signed-off-by: Michael Koziarski <michael at koziarski.com>
---
.../vendor/html-scanner/html/node.rb | 2 +-
+ .../test/controller/html-scanner/sanitizer_test.rb | 1 +
2 files changed, 2 insertions(+), 1 deletions(-)
diff --git a/actionpack/lib/action_controller/vendor/html-scanner/html/node.rb b/actionpack/lib/action_controller/vendor/html-scanner/html/node.rb
@@ -21,15 +22,3 @@ index 6c03316..0cd05d8 100644
name.downcase!
unless closing
-index bae0f5c..51baba6 100644
-@@ -19,6 +19,7 @@ class SanitizerTest < Test::Unit::TestCase
- assert_equal "This has a here.", sanitizer.sanitize("This has a <!-- comment --> here.")
- assert_equal "This has a here.", sanitizer.sanitize("This has a <![CDATA[<section>]]> here.")
- assert_equal "This has an unclosed ", sanitizer.sanitize("This has an unclosed <![CDATA[<section>]] here...")
-+ assert_equal "non printable char is a tag", sanitizer.sanitize("<\x07a href='/hello'>non printable char is a tag</a>")
- [nil, '', ' '].each { |blank| assert_equal blank, sanitizer.sanitize(blank) }
- end
-
---
-1.6.0.1
-
Index: rubygem-actionpack.spec
===================================================================
RCS file: /cvs/extras/rpms/rubygem-actionpack/EL-5/rubygem-actionpack.spec,v
retrieving revision 1.8
retrieving revision 1.9
diff -u -p -r1.8 -r1.9
--- rubygem-actionpack.spec 6 Dec 2009 17:05:37 -0000 1.8
+++ rubygem-actionpack.spec 6 Dec 2009 17:38:02 -0000 1.9
@@ -7,7 +7,7 @@
Summary: Web-flow and rendering framework putting the VC in MVC
Name: rubygem-%{gemname}
Version: 2.1.1
-Release: 4%{?dist}
+Release: 5%{?dist}
Group: Development/Languages
License: MIT
URL: http://www.rubyonrails.org
@@ -71,7 +71,7 @@ rm -rf %{buildroot}
%changelog
-* Mon Dec 7 2009 Mamoru Tasaka <mtasaka at ioa.s.u-tokyo.ac.jp> - 2.1.1-4
+* Mon Dec 7 2009 Mamoru Tasaka <mtasaka at ioa.s.u-tokyo.ac.jp> - 2.1.1-5
- Fix for potential CSRF protection circumvention (bug 544329)
- Fix for XSS weakness in strip_tags (bug 542786)
More information about the fedora-extras-commits
mailing list