Bump activesupport to 5.2.0 (!1033) · Merge requests · GitLab.org / release-tools

Robert Speicher requested to merge rs-update-activesupport into master Jun 10, 2020

Resolves

Name: activesupport
Version: 5.1.7
Advisory: CVE-2020-8165
Criticality: Unknown
URL: https://groups.google.com/forum/#!topic/rubyonrails-security/bv6fW4S0Y1c
Title: Potentially unintended unmarshalling of user-provided objects in MemCacheStore and RedisCacheStore
Solution: upgrade to ~> 5.2.4.3, >= 6.0.3.1

Bump activesupport to 5.2.0

Merge request reports