Commit d9477fc7 authored by Martin Markech's avatar Martin Markech
Browse files

Change rack version to >= 1.6.11 due to CVE-2018-16471 vulnerability

parent 2a121bbb
## 0.3.0 [unreleased] ## 0.3.0 [unreleased]
* Fix mini_magick version to >= 4.9.4, due to CVE-2019-13574 vulnerability * Fix mini_magick version to >= 4.9.4, due to CVE-2019-13574 vulnerability
* Change rack version to >= 1.6.11 due to CVE-2018-16471 vulnerability
## 0.2.0 [29 December 2016] ## 0.2.0 [29 December 2016]
......
...@@ -23,6 +23,7 @@ Gem::Specification.new do |s| ...@@ -23,6 +23,7 @@ Gem::Specification.new do |s|
s.add_dependency 'carrierwave', '0.6.2' s.add_dependency 'carrierwave', '0.6.2'
s.add_dependency 'mini_magick', ">= 4.9.4" s.add_dependency 'mini_magick', ">= 4.9.4"
s.add_dependency 'mini_exiftool' s.add_dependency 'mini_exiftool'
s.add_dependency 'rack', ">= 1.6.11"
# Development dependencies # Development dependencies
s.add_development_dependency 'refinerycms-testing', '~> 3.0.5' s.add_development_dependency 'refinerycms-testing', '~> 3.0.5'
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment