This bug was fixed in the package ruby-activerecord-2.3 - 2.3.14-2ubuntu0.1
--------------- ruby-activerecord-2.3 (2.3.14-2ubuntu0.1) quantal-security; urgency=low
* SECURITY UPDATE: unsafe query generation risk (LP: #1100188) - debian/patches/CVE-2013-0155.patch: added patch from Debian 2.3.14-4. - CVE-2013-0155 -- Marc Deslauriers <email address hidden> Fri, 18 Jan 2013 08:28:45 -0500
This bug was fixed in the package ruby-activereco rd-2.3 - 2.3.14-2ubuntu0.1
--------------- rd-2.3 (2.3.14-2ubuntu0.1) quantal-security; urgency=low
ruby-activereco
* SECURITY UPDATE: unsafe query generation risk (LP: #1100188) patches/ CVE-2013- 0155.patch: added patch from Debian 2.3.14-4.
- debian/
- CVE-2013-0155
-- Marc Deslauriers <email address hidden> Fri, 18 Jan 2013 08:28:45 -0500