Ruby on Rails 'redirect_to()' HTTP Header Injection Vulnerability

Ruby on Rails 'redirect_to()' HTTP Header Injection Vulnerability

References:

Commit 7282ed863ca7e6f928bae9162c9a63a98775a19d to rails's rails (NZKoz)
Header Injection And Response Splitting (Ruby on Rails Security Project)
Riding Rails: Rails 2.0.5: Security fixes: (David October)
Ruby on Rails Homepage (Ruby on Rails)

Privacy Statement
Copyright 2010, SecurityFocus