ruby-lang.org

Ruby 2.3.5 Released


~1 year ago by ruby-lang.org on ruby-lang.org.
Ruby 2.3.5 has been released. This release includes about 70 bug fixes after the previous release, and also includes several security fixes. Please check...

Ruby 2.2.8 Released


~1 year ago by ruby-lang.org on ruby-lang.org.
Ruby 2.2.8 has been released. This release includes several security fixes. Please check the topics below for details. CVE-2017-0898: Buffer underrun...

CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 decode


~1 year ago by ruby-lang.org on ruby-lang.org.
There is a buffer underrun vulnerability in OpenSSL bundled by Ruby. This vulnerability has been assigned the CVE identifier CVE-2017-14033. Details If...

CVE-2017-14064: Heap exposure vulnerability in generating JSON


~1 year ago by ruby-lang.org on ruby-lang.org.
There is a heap exposure vulnerability in JSON bundled by Ruby. This vulnerability has been assigned the CVE identifier CVE-2017-14064. Details The generate...

Ruby 2.4.2 Released


~1 year ago by ruby-lang.org on ruby-lang.org.
We are pleased to announce the release of Ruby 2.4.2. This release contains some security fixes. CVE-2017-0898: Buffer underrun vulnerability in Kernel...

Multiple vulnerabilities in RubyGems


~1 year ago by ruby-lang.org on ruby-lang.org.
There are multiple vulnerabilities in RubyGems bundled by Ruby. It is reported at the official blog of RubyGems. Details The following vulnerabilities...

Ruby 2.5.0-preview1 Released


~1 year ago by ruby-lang.org on ruby-lang.org.
We are pleased to announce the release of Ruby 2.5.0-preview1. Ruby 2.5.0-preview1 is the first preview release toward Ruby 2.5.0. It introduces some new...

Ruby 2.3.6 Released


10 months ago by ruby-lang.org on ruby-lang.org.
Ruby 2.3.6 has been released. This release includes about 10 bug fixes after the previous release, and also includes several security fixes. Please check...

Ruby 2.2.9 Released


10 months ago by ruby-lang.org on ruby-lang.org.
Ruby 2.2.9 has been released. This release includes several security fixes. Please check the topics below for details. CVE-2017-17405: Command injection...

CVE-2017-17405: Command injection vulnerability in Net::FTP


10 months ago by ruby-lang.org on ruby-lang.org.
There is a command injection vulnerability in Net::FTP bundled with Ruby. This vulnerability has been assigned the CVE identifier CVE-2017-17405. Details...