Ruby 2.3.5 Released


5 months ago by ruby-lang.org on ruby-lang.org.
Ruby 2.3.5 has been released. This release includes about 70 bug fixes after the previous release, and also includes several security fixes. Please check...

CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf


5 months ago by ruby-lang.org on ruby-lang.org.
There is a buffer underrun vulnerability in the sprintf method of Kernel module. This vulnerability has been assigned the CVE identifier CVE-2017-0898.Details...

CVE-2017-10784: Escape sequence injection vulnerability in the Basic authentication of WEBrick


5 months ago by ruby-lang.org on ruby-lang.org.
There is an escape sequence injection vulnerability in the Basic authentication of WEBrick bundled by Ruby. This vulnerability has been assigned the CVE...

Ruby 2.4.2 Released


5 months ago by ruby-lang.org on ruby-lang.org.
We are pleased to announce the release of Ruby 2.4.2. This release contains some security fixes. CVE-2017-0898: Buffer underrun vulnerability in Kernel...

Multiple vulnerabilities in RubyGems


6 months ago by ruby-lang.org on ruby-lang.org.
There are multiple vulnerabilities in RubyGems bundled by Ruby. It is reported at the official blog of RubyGems. Details The following vulnerabilities...

Nominations now being accepted for Ruby Prize 2017


7 months ago by ruby-lang.org on ruby-lang.org.
We are very pleased to announce you that Ruby Prize will be held this year! The Ruby Prize is given to recognize the efforts of remarkable activities and...

8 things I look for in a Ruby on Rails app


8 months ago by Robby Russell on Robby on Rails.
As a consultant, I’ve looked over a shitload (how many? probably ~150-200) over the last 12 1/2 years in the Ruby on Rails community. I haven&#8217...

Ruby Queue Pop with Timeout, v.2 (Correctly Handling Spurious Wakeups)


8 months ago by Job Vranish on Atomic Spin.
In one of my previous posts, I wrote a queue implementation that would let you provide a timeout to the pop method. Unfortunately, it has a bug caused by...

Ten Years


9 months ago by pogodan on blog.jacius.info.
Oh, how time flies! Yesterday marked the tenth anniversary of this blog. To commemorate, I am relaunching my site under a new domain. Also...

Starting a New Engagement as a Lead Consultant


9 months ago by Jay Fields on Jay Fields Thoughts.
Someone recently asked me for information on starting new consulting engagements.  A few years back I published Sean Doran and Scott Conley's thoughts...