Good news everyone! Rails version 3.1.8 has been released.
This release of Rails contains three important security fixes:
* [CVE-2012-3463 Ruby on Rails Potential XSS Vulnerability in
select_tag prompt](https://groups.google.com/d/msg/rubyonrails-security/fV3QUToSMSw/eHBSFOUYHpYJ)
* [CVE-2012-3464 Potential XSS Vulnerability in Ruby on
Rails](https://groups.google.com/d/msg/rubyonrails-security/kKGNeMrnmiY/r2yM7xy-G48J)
* [CVE-2012-3465 XSS Vulnerability in
strip_tags](https://groups.google.com/d/msg/rubyonrails-security/FgVEtBajcTY/tYLS1JJTu38J)
All changes can be found on
[github](https://github.com/rails/rails/compare/v3.1.7...v3.1.8).
Thanks everyone!
···
--
Santiago Pastorino
WyeWorks Co-founder
http://www.wyeworks.com
Twitter: http://twitter.com/spastorino
Github: http://github.com/spastorino
--
You received this message because you are subscribed to the Google Groups "Ruby on Rails: Core" group.
To post to this group, send email to rubyonrails-core@googlegroups.com.
To unsubscribe from this group, send email to rubyonrails-core+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/rubyonrails-core?hl=en.