An interpretation conflict can cause the Active Record component of Rails, a web framework for the Ruby programming language, to truncate queries in unexpected ways. This may allow attackers to elevate their privileges. For the stable distribution (squeeze), this problem has been fixed in version 2.3.5-1.2+squeeze5. We recommend that you upgrade your rails packages.
An interpretation conflict can cause the Active Record component of Rails, a web framework for the Ruby programming language, to truncate queries in unexpected ways. This may allow attackers to elevate their privileges.
For the stable distribution (squeeze), this problem has been fixed in version 2.3.5-1.2+squeeze5.
We recommend that you upgrade your rails packages.