rpms / rh-ror50-rubygem-actionpack

Clone
Source Code
GIT

Blame SOURCES/rubygem-actionpack-5.0.7.2-CVE-2019-5418-CVE-2019-5419-render-file.patch

c7
  1.   c7
  2.   SOURCES
  3.   rubygem-actionpack-5.0.7.2-CVE-2019-5418-CVE-2019-5419-render-file.patch
Blob History Raw
3f3017 
diff --git a/actionpack/lib/action_dispatch/http/mime_negotiation.rb b/actionpack/lib/action_dispatch/http/mime_negotiation.rb
3f3017 
index f17b93fad7..a39052e6f7 100644
3f3017 
--- a/actionpack/lib/action_dispatch/http/mime_negotiation.rb
3f3017 
+++ b/actionpack/lib/action_dispatch/http/mime_negotiation.rb
3f3017 
@@ -76,6 +76,11 @@ def formats
3f3017 
           else
3f3017 
             [Mime[:html]]
3f3017 
           end
3f3017 
+
3f3017 
+          v = v.select do |format|
3f3017 
+            format.symbol || format.ref == "*/*"
3f3017 
+          end
3f3017 
+
3f3017 
           set_header k, v
3f3017 
         end
3f3017 
       end

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation