ruby-lang.org

Ruby 2.3.5 Released


11 months ago by ruby-lang.org on ruby-lang.org.
Ruby 2.3.5 has been released. This release includes about 70 bug fixes after the previous release, and also includes several security fixes. Please check...

Ruby 2.2.8 Released


11 months ago by ruby-lang.org on ruby-lang.org.
Ruby 2.2.8 has been released. This release includes several security fixes. Please check the topics below for details. CVE-2017-0898: Buffer underrun...

CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 decode


11 months ago by ruby-lang.org on ruby-lang.org.
There is a buffer underrun vulnerability in OpenSSL bundled by Ruby. This vulnerability has been assigned the CVE identifier CVE-2017-14033. Details If...

CVE-2017-14064: Heap exposure vulnerability in generating JSON


11 months ago by ruby-lang.org on ruby-lang.org.
There is a heap exposure vulnerability in JSON bundled by Ruby. This vulnerability has been assigned the CVE identifier CVE-2017-14064. Details The generate...

Ruby 2.4.2 Released


11 months ago by ruby-lang.org on ruby-lang.org.
We are pleased to announce the release of Ruby 2.4.2. This release contains some security fixes. CVE-2017-0898: Buffer underrun vulnerability in Kernel...

Multiple vulnerabilities in RubyGems


12 months ago by ruby-lang.org on ruby-lang.org.
There are multiple vulnerabilities in RubyGems bundled by Ruby. It is reported at the official blog of RubyGems. Details The following vulnerabilities...

Ruby 2.5.0-preview1 Released


11 months ago by ruby-lang.org on ruby-lang.org.
We are pleased to announce the release of Ruby 2.5.0-preview1. Ruby 2.5.0-preview1 is the first preview release toward Ruby 2.5.0. It introduces some new...

Ruby 2.3.6 Released


8 months ago by ruby-lang.org on ruby-lang.org.
Ruby 2.3.6 has been released. This release includes about 10 bug fixes after the previous release, and also includes several security fixes. Please check...

Ruby 2.2.9 Released


8 months ago by ruby-lang.org on ruby-lang.org.
Ruby 2.2.9 has been released. This release includes several security fixes. Please check the topics below for details. CVE-2017-17405: Command injection...

CVE-2017-17405: Command injection vulnerability in Net::FTP


8 months ago by ruby-lang.org on ruby-lang.org.
There is a command injection vulnerability in Net::FTP bundled with Ruby. This vulnerability has been assigned the CVE identifier CVE-2017-17405. Details...