--z0eOaCaDLjvTGF2l
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

Good news everyone!  Rails version 3.1.6 has been released.

This release of Rails contains two important security fixes:

  * [CVE-2012-2694 Ruby on Rails Unsafe Query Generation Risk in Ruby on Ra=
ils](https://groups.google.com/group/rubyonrails-security/browse_thread/thr=
ead/8c82d9df8b401c5e)
  * [CVE-2012-2695 Ruby on Rails SQL Injection](https://groups.google.com/g=
roup/rubyonrails-security/browse_thread/thread/9782f44c4540cf59)

Please note that the last round of security fixes DO NOT cover the situatio=
ns that these patches fix.  Therefore it is suggested that all users upgrad=
e immediately.  For more information about these issues, please see the ann=
oumcenents on the [rubyonrails-security mailing list](https://groups.google=
=2Ecom/group/rubyonrails-security).


Other changes for this release can be found in each component's CHANGELOG:

  * [Action Mailer](https://github.com/rails/rails/blob/3-1-stable/actionma=
iler/CHANGELOG)
  * [Action Pack](https://github.com/rails/rails/blob/3-1-stable/actionpack=
/CHANGELOG)
  * [Active Model](https://github.com/rails/rails/blob/3-1-stable/activemod=
el/CHANGELOG)
  * [Active Record](https://github.com/rails/rails/blob/3-1-stable/activere=
cord/CHANGELOG)
  * [Active Support](https://github.com/rails/rails/blob/3-1-stable/actives=
upport/CHANGELOG)
  * [Railties](https://github.com/rails/rails/blob/3-1-stable/railties/CHAN=
GELOG)

All changes can be found [here](https://github.com/rails/rails/compare/v3.1=
=2E5...v3.1.6).

<3<3<3

--=20
Aaron Patterson
http://tenderlovemaking.com/

--z0eOaCaDLjvTGF2l
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (Darwin)

iQEcBAEBAgAGBQJP17bTAAoJEJUxcLy0/6/GlxYH/jH72fflaRhSbz0uIFytvvY3
aESaas2YYoVc9rvj8fogOXW9EKzCOLHzbZWk5d3BBWJjPS4++7OohzNS/GkgMqu7
KaOpMQvyzkgYiM58SEJjACJqsotb21CXIGpuFs8UNSwHKkUVk7aPLBeDW7Lx5hq+
9H2Mibk6KuAYnhiT8/Wgl4o4lO6knGfWEpiv8iiQ7sz97kYiBkuQGTO/8I9AgEYW
Axo/8D2LQqRoOMSkQ9+3OVPTmeiOOACEhHIKvQ0kF0AmH2sm6xWaIARijTzzlylz
rk6ct4pIKJZozZE6uPUC4rdmNmkzx4vfa7WzmAgr2OGIXQlIb21PDVL1guGTU2c=
=iFBL
-----END PGP SIGNATURE-----

--z0eOaCaDLjvTGF2l--

Good news everyone!  Rails version 3.1.6 has been released.

This release of Rails contains two important security fixes:

  * [CVE-2012-2694 Ruby on Rails Unsafe Query Generation Risk in Ruby on Ra=
ils](https://groups.google.com/group/rubyonrails-security/browse_thread/thr=
ead/8c82d9df8b401c5e)
  * [CVE-2012-2695 Ruby on Rails SQL Injection](https://groups.google.com/g=
roup/rubyonrails-security/browse_thread/thread/9782f44c4540cf59)

Please note that the last round of security fixes DO NOT cover the situatio=
ns that these patches fix.  Therefore it is suggested that all users upgrad=
e immediately.  For more information about these issues, please see the ann=
oumcenents on the [rubyonrails-security mailing list](https://groups.google=
=2Ecom/group/rubyonrails-security).


Other changes for this release can be found in each component's CHANGELOG:

  * [Action Mailer](https://github.com/rails/rails/blob/3-1-stable/actionma=
iler/CHANGELOG)
  * [Action Pack](https://github.com/rails/rails/blob/3-1-stable/actionpack=
/CHANGELOG)
  * [Active Model](https://github.com/rails/rails/blob/3-1-stable/activemod=
el/CHANGELOG)
  * [Active Record](https://github.com/rails/rails/blob/3-1-stable/activere=
cord/CHANGELOG)
  * [Active Support](https://github.com/rails/rails/blob/3-1-stable/actives=
upport/CHANGELOG)
  * [Railties](https://github.com/rails/rails/blob/3-1-stable/railties/CHAN=
GELOG)

All changes can be found [here](https://github.com/rails/rails/compare/v3.1=
=2E5...v3.1.6).

<3<3<3

--=20
Aaron Patterson
http://tenderlovemaking.com/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (Darwin)

iQEcBAEBAgAGBQJP17bTAAoJEJUxcLy0/6/GlxYH/jH72fflaRhSbz0uIFytvvY3
aESaas2YYoVc9rvj8fogOXW9EKzCOLHzbZWk5d3BBWJjPS4++7OohzNS/GkgMqu7
KaOpMQvyzkgYiM58SEJjACJqsotb21CXIGpuFs8UNSwHKkUVk7aPLBeDW7Lx5hq+
9H2Mibk6KuAYnhiT8/Wgl4o4lO6knGfWEpiv8iiQ7sz97kYiBkuQGTO/8I9AgEYW
Axo/8D2LQqRoOMSkQ9+3OVPTmeiOOACEhHIKvQ0kF0AmH2sm6xWaIARijTzzlylz
rk6ct4pIKJZozZE6uPUC4rdmNmkzx4vfa7WzmAgr2OGIXQlIb21PDVL1guGTU2c=
=iFBL
-----END PGP SIGNATURE-----