kotovalexarian-likes-github
/
rails--rails
mirror of https://github.com/rails/rails.git
1
0
Fork 0
Code Releases Activity
rails--rails/activejob/lib
History
Rafael Mendonça França 72300f9742 Do not deserialize GlobalID objects that were not generated by Active Job 
Trusting any GlobaID object when deserializing jobs can allow
attackers to access information that should not be accessible to them.

Fix CVE-2018-16476.
 		2018-11-27 15:28:41 -05:00
..
active_job Do not deserialize GlobalID objects that were not generated by Active Job 2018-11-27 15:28:41 -05:00
rails/generators/job Strip duplicated suffixes more strictly 2018-04-22 14:30:07 +09:00
active_job.rb Revert "Merge pull request #33234 from alpaca-tc/autoload_activejob_arguments" 2018-07-01 13:22:44 +02:00