If I've disabled the JSON MIME type as input, a la the workaround to the XML iss... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		jacobn on Jan 29, 2013 \| parent \| context \| favorite \| on: Vulnerability in JSON Parser in Ruby on Rails 3.0 ... If I've disabled the JSON MIME type as input, a la the workaround to the XML issue a couple of weeks ago, am I safe against this vulnerability?

cgcardona on Jan 29, 2013 [–]

It looks like this only affects 2.3.x and 3.0.x.

If you're on 3.1.x or 3.2.x then you should be good.

jacobn on Jan 31, 2013 | [–]

Ah, sorry, should have been more clear: I'm on 2.3.x

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact