A denial of service vulnerability has been discovered in the resolv
gem bundled with Ruby.
This vulnerability has been assigned the CVE identifier CVE-2025-24294.
We recommend upgrading the resolv gem.
Continue Reading...
Posted by mame on 8 Jul 2025
Ruby 3.4.4 has been released.
Continue Reading...
Posted by k0kubun on 14 May 2025
There is a possibility for DoS by in the net-imap gem. This vulnerability has been assigned the CVE identifier CVE-2025-43857. We recommend upgrading the net-imap gem.
Continue Reading...
Posted by nevans on 28 Apr 2025
We are pleased to announce the release of Ruby 3.5.0-preview1. Ruby 3.5 updates its Unicode version to 15.1.0, and so on.
Continue Reading...
Posted by naruse on 18 Apr 2025
Ruby 3.4.3 has been released.
Continue Reading...
Posted by k0kubun on 14 Apr 2025
Ruby 3.3.8 has been released.
Continue Reading...
Posted by nagachika on 9 Apr 2025
Ruby 3.2.8 has been released. This release includes CVE-2025-27219, CVE-2025-27220 and CVE-2025-27221 fixes.
Continue Reading...
Posted by hsbt on 26 Mar 2025
Ruby 3.1.7 has been released. This release includes CVE-2025-27219, CVE-2025-27220 and CVE-2025-27221 fixes and update bundled REXML and RSS gems.
Continue Reading...
Posted by hsbt on 26 Mar 2025
We published security advisories for CVE-2025-27219, CVE-2025-27220 and CVE-2025-27221. Please read the details below.
Continue Reading...
Posted by hsbt on 26 Feb 2025
Ruby 3.4.2 has been released.
Continue Reading...
Posted by k0kubun on 14 Feb 2025