OHR Support:44248417846b8f735d42027606d34a0af3930f35 commitshttps://ohwr.org/project/ohr-support/commits/44248417846b8f735d42027606d34a0af3930f352013-01-29T22:13:50Zhttps://ohwr.org/project/ohr-support/commit/44248417846b8f735d42027606d34a0af3930f35Bump version to v2.9.02013-01-29T22:13:50ZFelix Schäferfelix@fachschaften.orghttps://ohwr.org/project/ohr-support/commit/2b8ec7c80fe2c6ad356e31f044b3bf3a82204662Update Changelog for v2.9.02013-01-29T22:13:16ZFelix Schäferfelix@fachschaften.orghttps://ohwr.org/project/ohr-support/commit/066f616210a85a3a1eb4e4d8d43608cd88975fbcRemove Rails patches which are already included in Rails 2.3.16 #12192013-01-29T22:11:27ZFelix Schäferfelix@fachschaften.orghttps://ohwr.org/project/ohr-support/commit/8ea58b6fd52c75a23ef96f6cfbeec47c53982efcBump Rails version to 2.3.16 #12192013-01-29T22:11:07ZFelix Schäferfelix@fachschaften.orghttps://ohwr.org/project/ohr-support/commit/bfdc43ba73e426813915306a1fdd9a4600eab9aaBump version to v2.8.12013-01-16T22:29:13ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/2b909243ee723b2e8b1afaca55d623d4d692b2ffUpdate Changelog for v2.8.12013-01-16T22:28:51ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/b7a82ac6910ce87ba85562d267c30f679cb97de7Fix for CVE-2013-0155 in Rails2013-01-16T22:27:30ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/964d19cc57dc960c156fbbdae5ae3e4fee4347b2Bump version to 2.8.02013-01-09T13:11:46ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/dd945c78c3130a6b0c442c1824504280080bf985Update Changelog for v2.8.02013-01-09T13:11:18ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/41e349888bad04dae0c6a1a1acf58ebb0a2ca421Remove Rails patches which are already included in Rails 2.3.15 #12002013-01-09T13:11:18ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/dca36c222a7addbf9baeb8e20576b1bc271be3f1Bump Rails version to 2.3.15 #12002013-01-09T13:11:18ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/524ef942d985bcf629fc270cfe7fa9de28a3aaceBump version to v2.7.42013-01-06T22:56:43ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/e06dd303db5c1a70a6a2bdb73276b672fc715534Update Changelog for v2.7.42013-01-06T22:56:23ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/e2bc4e905af14a953f07852947815e45b0b7161cUpdate Copyright for 20132013-01-06T22:52:16ZHolger Justhjust@meine-er.de
We programmers have a nice new years tradition: We revisit all of
our projects and add 1 to a small number near a "(c)".
-- Volker Dusch
<a href="https://twitter.com/__edorian/status/153801913442373633" rel="nofollow noreferrer noopener" target="_blank">https://twitter.com/__edorian/status/153801913442373633</a>https://ohwr.org/project/ohr-support/commit/6ece1687de00d314ab6fbdc4dad1065642a2c712Fix XSS vulnerabilities in Rails (CVE-2012-3464, CVE-2012-3465) #1113 #11142013-01-06T22:50:49ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/6d87b8b297e21f9901852eaf36b8f479b309c1acSQL Injection Vulnerability in Ruby on Rails (CVE-2012-5664) #11952013-01-06T22:50:32ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/bd509a40084d7092c514d8a053fcb6bd8683722cBump version to 2.7.32012-06-13T08:29:12ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/b0ec4c140d3de40f38987a68533de6f055f46856Update changelog for v2.7.32012-06-13T08:28:55ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/e178f1ce9c9999ebd7f8f16dbfc996badd961c83Fix SQL injection via nested hashes in conditions. CVE-2012-2695 #10372012-06-13T08:27:30ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/c3d3bec47f42fb375c5a99e23afae6a52bab5938Fix SQL injection via nested hashes in conditions (CVE-2012-2694) #10362012-06-13T08:27:21ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/8d56d32774bdcc7e2b75d32ad3a25533f36c21b3Bump to 2.7.22012-06-09T16:17:46ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/44564405351c1a55e60b7102ad8eddec6e629c7eUpdate changelog for v2.7.22012-06-09T16:17:14ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/f959b9bdb98fa5cfd1311c366bf1dafab6c2dc2c[#1025] Fix Rails vulnerability (CVE-2012-2660)2012-06-09T16:03:41ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/9d32e68ec05f965b7929dc410ee53f4f0bfd1ed2Bump version to 2.7.12012-04-04T12:09:08ZHolger Justh.just@finn.dehttps://ohwr.org/project/ohr-support/commit/80289c5a70ab3b08e4f2806689e6271b35036d67Set user_id as a protected attribute (#922).2012-04-04T12:06:01ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/902c624b4763a8cce69b3f3869e210dd86f48d6cPrevent mass-assignment vulnerability when adding/updating a wiki (#922).2012-04-04T12:06:00ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/aee7d7315b7b35d1152b33381e6f1dc8d273ea7bPrevent mass-assignment vulnerability when adding/updating a version (#922).2012-04-04T12:05:41ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/1f108174445bb0363c1bede9a12f6290168246faPrevent mass-assignment vulnerability when adding/updating a time entry (#922).2012-04-04T11:39:37ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/ea3ff66b8e755880ec6bafc94526a4903c679c9dUse safe_attributes= just like in #create. (#922)2012-04-04T11:39:37ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/ee99b2de03960f547688605702edbdb1e262f0a4Prevent mass-assignment vulnerability when adding/updating a news (#922).2012-04-04T11:39:37ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/4c322d379e3792895daf661fd1714595aadec034Prevent mass-assignment vulnerability when adding/updating a forum message (#...2012-04-04T11:39:36ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/f12b9fca08ab015037182bae94106ca70105771dPrevent mass-assignment vulnerability when adding a project member (#922).2012-04-04T11:39:36ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/296b3173ef01227232b9ea9d67404bf8e5e571f8Prevent mass-assignment vulnerability when adding/updating an issue category ...2012-04-04T11:39:20ZJean-Philippe Langjp_lang@yahoo.frhttps://ohwr.org/project/ohr-support/commit/c651ba1a98ad09c4d60dc8f3065c181dfa8a4bd4Prevent mass-assignment vulnerability when adding/updating a document (#922).2012-04-04T11:30:21ZJean-Philippe Langjp_lang@yahoo.fr
Conflicts:
app/controllers/documents_controller.rbhttps://ohwr.org/project/ohr-support/commit/ad996d7839ef29c608df67e2b3c56f6b8f6feb70Merge branch 'release-v2.7.0' into stable2012-02-06T22:40:10ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/608fd61138257663bbfd3723db5cc0c80842b13fBump version to 2.7.02012-02-06T22:36:58ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/a059cb489286ef16dda416b5d68bf1e0c152ef26Update changelog for 2.7.0 release2012-02-06T22:36:29ZHolger Justhjust@meine-er.dehttps://ohwr.org/project/ohr-support/commit/aa5be5132dd57cb6f58b021c6c9f9e4f2baed1e1[#593] Generate wiki content notifications in the JournalObserver - backporte...2012-02-06T21:54:53ZHolger Justh.just@finn.de
This will prevent the usage of the wrong wiki_content status.
The code is not overly pretty and deserves a thorough refactoring, but at
least it solves the problem at hand.https://ohwr.org/project/ohr-support/commit/6fd9bc490f063a36f9aa673059195a9779dffd5f[#849 #789] Remove config.ru - Backport for 2.72012-02-06T21:50:38ZHolger Justhjust@meine-er.de
Rails 2.3 doesn't work well as a rack-only apphttps://ohwr.org/project/ohr-support/commit/f417996ff0542efe7f35e4aa8a8a3cade6eed1cf[#839] Remove ruby-debug dependency - Backport for 2.72012-02-06T21:50:10ZHolger Justhjust@meine-er.de
It completely breaks on Ruby 1.9.3-p0. This is a stopper for people installing all groups. For the rest it is rarely used at all. Developers and testers requiring it can include it into their Gemfile.local