about summary refs log tree commit diff
path: root/config/initializers/suppress_csrf_warnings.rb
diff options
context:
space:
mode:
authorDaigo 3 Dango <zunda@users.noreply.github.com>2021-04-09 00:31:36 +0000
committerGitHub <noreply@github.com>2021-04-09 02:31:36 +0200
commit3f8d0de82e15f80f1dfbd4d93f721b2853538774 (patch)
treef4eef45776865cdfd661ad7d5563dc5bd2970234 /config/initializers/suppress_csrf_warnings.rb
parent3f2533ca8e2465fbc742df02741e7dbe633d0da0 (diff)
Upgrade Ruby to 2.7.3 (#16004)
* Upgrade Ruby to 2.7.3

https://www.ruby-lang.org/en/news/2021/04/05/ruby-2-7-3-released/
includes security fixes to
- CVE-2021-28965: XML round-trip vulnerability in REXML
- CVE-2021-28966: Path traversal in Tempfile on Windows

* Update rexml to 3.2.5

https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
Diffstat (limited to 'config/initializers/suppress_csrf_warnings.rb')
0 files changed, 0 insertions, 0 deletions