2.4.9 fixes regression in 2.4.8

I inadvertently broke creating new projects with yesterday’s 2.4.8 release. I have deployed a fix on gitorious.org, and just tagged 2.4.9. 2.4.9 also addresses a bug in Gitorious’ log graph visualization.

We made some sweeping changes yesterday, by changing attr_protected (which was the recent target of a Rails vulnerability) to attr_accessible – basically changing from black-listing to white-listing in what parameters can be posted to Gitorious and set on DB-backed models. It seems that one case was not covered by automatic tests, and was not discovered immediately.

Sorry for the inconvenience.

To upgrade your Gitorious, follow the regular procedure:

* git fetch origin
* git merge v2.4.9
* git submodule update
* bin/bundle install
* bin/rake assets:clear
* touch tmp/restart.txt (assuming you’re using Passenger. For non-Passenger deployments, restart your application server like you normally do)

2 Comments

  1. Posted December 6, 2013 at 7:14 pm | Permalink

    Cisco is the industry leader in information technology, and getting certified by them is a guaranteed way to succeed with IT careers. We help you do exactly that with our best quality Cisco 200-120 Cisco Certified Network Associate CCNA (803) training materials. Cisco Sales Expert

  2. Posted December 27, 2013 at 8:49 am | Permalink

    I am no longer sure where you are getting your info,
    but good topic. I needs to spend a while studying
    much more or figuring out more. Thanks for wonderful information I used to
    be in search of this info for my mission.


One Trackback

  1. [...] Skip to content « 2.4.9 fixes regression in 2.4.8 [...]

Post a Comment

Required fields are marked *

*
*

Follow

Get every new post delivered to your Inbox.

Join 716 other followers

%d bloggers like this: