This bug was fixed in the package ruby-activerecord-2.3 - 2.3.14-1ubuntu0.12.04.1
--------------- ruby-activerecord-2.3 (2.3.14-1ubuntu0.12.04.1) precise-security; urgency=low
* SECURITY UPDATE: unsafe query generation risk (LP: #1100188) - debian/patches/CVE-2013-0155.patch: added patch from Debian 2.3.14-4. - CVE-2013-0155 -- Marc Deslauriers <email address hidden> Fri, 18 Jan 2013 08:33:13 -0500
This bug was fixed in the package ruby-activereco rd-2.3 - 2.3.14- 1ubuntu0. 12.04.1
--------------- rd-2.3 (2.3.14- 1ubuntu0. 12.04.1) precise-security; urgency=low
ruby-activereco
* SECURITY UPDATE: unsafe query generation risk (LP: #1100188) patches/ CVE-2013- 0155.patch: added patch from Debian 2.3.14-4.
- debian/
- CVE-2013-0155
-- Marc Deslauriers <email address hidden> Fri, 18 Jan 2013 08:33:13 -0500