Hi everyone! Ruby on Rails version 3.1.7 has been released!
This version contains an important security fix, please upgrade immediately. The security fix impacts people using digest authentication from Action Pack. You can read more about the problem here:
https://groups.google.com/group/rubyonrails-security/browse_thread/thread/bf1263adcd79a983
Thank you to Charlie Somerville for reporting the problem and sending a patch.
This release only contains the security fix, but you can still take a look at the changelog for each gem (if you like):
* [Action Mailer](rails/CHANGELOG.md at v3.1.7 · rails/rails · GitHub) * [Action Pack](rails/CHANGELOG.md at v3.1.7 · rails/rails · GitHub) * [Active Model](rails/CHANGELOG.md at v3.1.7 · rails/rails · GitHub) * [Active Record](rails/CHANGELOG.md at v3.1.7 · rails/rails · GitHub) * [Active Resource](rails/CHANGELOG.md at v3.1.7 · rails/rails · GitHub) * [Active Support](rails/CHANGELOG.md at v3.1.7 · rails/rails · GitHub) * [Railties](rails/CHANGELOG.md at v3.1.7 · rails/rails · GitHub)
A comprehensive list of changes can be found on github:
Comparing v3.1.6...v3.1.7 · rails/rails · GitHub
Thanks to all the contributors, especially everyone who tested the release candidate. I appreciate it!
<3<3