19 cards
View
Posted about 3 years ago. Visible to the public.

Rails 3.2 LTS Changelog

Aug 27th, 2018: Version 3.2.22.10

Jun 21st, 2018: Version 3.2.22.9

Require sprockets version 2.2.3, since 2.2.1 and 2.2.2 are vulnerable to an information leak attack. More Details

Mar 20th, 2018: Not affected by sanitization CVEs

A vulnerability was disclosed for some Ruby sanitization gems like loofah (CVE-2018-8048) and sanitize (CVE-2018-3740). This also affects recent Rails versions, whose sanitize() helper depends on loofah.

We have confirmed that the sanitize() helper in Rails 3.2 is not affected by this issue.

Note that if your application uses one of the affected gems directly, you may still be affected and should update to the latest version of these gems.

Jan 16th, 2017: Version 3.2.22.8

Merged Ruby 2.3 compatibility fixes from the rails/3-2-stable branch.

Ruby 2.3 is now officially supported.

Aug 12th, 2016: Version 3.2.22.7

Merged a fix from the rails/3-2-stable branch:

Mar 1st, 2016: Version 3.2.22.6

  • Change to the rails gemspec, to prevent Bundler from installing outdated rails versions under rare circumstances
  • Functionally identical to 3.2.22.5.

Mar 1st, 2016: Version 3.2.22.5

More Details

Jan 26th, 2016: Version 3.2.22.4

Merged several security fixes from the rails/3-2-stable branch, that include

Additionally backported the following:

More Details

November 2nd, 2015: Version 3.2.22.3

  • Add support for private gem servers.

June 17th, 2015: Version 3.2.22.2

June 17th, 2015: Version 3.2.22.1

  • Ruby 2.2 compatibility
  • Fix test suite

December 10th, 2014: Version 3.2.21.1

  • Initial release.

Owner of this card:

Avatar
Henning Koch
Last edit:
21 days ago
by Tobias Kraze
This website uses cookies to improve usability and analyze traffic.
Accept or learn more