Gemfile · 36026fb97b4e20a0021fc36ea9915a4883b9b07b · Kazuhiko Shiozaki / gitlab-ce · GitLab

Find file Blame History Permalink

Merge branch 'rs-bump-nokogiri' into 'master' · 36026fb9

Robert Speicher authored Dec 22, 2015

Explicitly require Nokogiri 1.6.7.1 due to security issue

```
Name: nokogiri
Version: 1.6.7
Advisory: CVE-2015-5312
Criticality: High
URL: https://groups.google.com/forum/#!topic/ruby-security-ann/aSbgDiwb24s
Title: Nokogiri gem contains several vulnerabilities in libxml2
Solution: upgrade to >= 1.6.7.1
```

See merge request !2154

36026fb9

This project manages its dependencies using Bundler. Learn more

Gemfile 7.17 KB