Ruby

Recent News

Ruby 4.0.3 Released

Ruby 4.0.3 has been released.

Continue Reading...

Posted by k0kubun on 21 Apr 2026

CVE-2026-41316: ERB @_init deserialization guard bypass via def_module / def_method / def_class

We published security advisory for CVE-2026-41316.

Continue Reading...

Posted by k0kubun on 21 Apr 2026

Ruby 3.2.11 Released

Ruby 3.2.11 has been released. This release includes an update to the zlib gem addressing CVE-2026-27820.

Continue Reading...

Posted by hsbt on 27 Mar 2026

Ruby 3.3.11 Released

Ruby 3.3.11 has been released. This release includes an update to the zlib gem addressing CVE-2026-27820, along with some bug fixes.

Continue Reading...

Posted by hsbt on 26 Mar 2026

Ruby 4.0.2 Released

Ruby 4.0.2 has been released.

Continue Reading...

Posted by k0kubun on 16 Mar 2026

Ruby 3.4.9 Released

Ruby 3.4.9 has been released.

Continue Reading...

Posted by nagachika on 11 Mar 2026

CVE-2026-27820: Buffer overflow vulnerability in Zlib::GzipReader

A buffer overflow vulnerability exists in Zlib::GzipReader. This vulnerability has been assigned the CVE identifier CVE-2026-27820. We recommend upgrading the zlib gem.

Continue Reading...

Posted by hsbt on 5 Mar 2026

Ruby 3.2.10 Released

Ruby 3.2.10 has been released.

Continue Reading...

Posted by hsbt on 14 Jan 2026

Ruby 4.0.1 Released

Ruby 4.0.1 has been released.

Continue Reading...

Posted by k0kubun on 13 Jan 2026

Ruby 4.0.0 Released

We are pleased to announce the release of Ruby 4.0.0. Ruby 4.0 introduces “Ruby Box” and “ZJIT”, and adds many improvements.

Continue Reading...

Posted by naruse on 25 Dec 2025