Recent News

Ruby 3.4.10 Released

Ruby 3.4.10 has been released.

Continue Reading...

Posted by nagachika on 30 Jun 2026

Ruby 4.0.5 Released

Ruby 4.0.5 has been released.

Continue Reading...

Posted by k0kubun on 20 May 2026

CVE-2026-46727: Use-after-free in pthread-based getaddrinfo timeout handler

A use-after-free vulnerability has been discovered in the pthread-based getaddrinfo timeout handler of Ruby. This vulnerability has been assigned the CVE identifier CVE-2026-46727. This issue has been fixed in Ruby 4.0.5. We recommend upgrading Ruby.

Continue Reading...

Posted by hsbt on 20 May 2026

Ruby 4.0.4 Released

Ruby 4.0.4 has been released.

Continue Reading...

Posted by k0kubun on 11 May 2026

Ruby 4.0.3 Released

Ruby 4.0.3 has been released.

Continue Reading...

Posted by k0kubun on 21 Apr 2026

CVE-2026-41316: ERB @_init deserialization guard bypass via def_module / def_method / def_class

We published security advisory for CVE-2026-41316.

Continue Reading...

Posted by k0kubun on 21 Apr 2026

Ruby 3.2.11 Released

Ruby 3.2.11 has been released. This release includes an update to the zlib gem addressing CVE-2026-27820.

Continue Reading...

Posted by hsbt on 27 Mar 2026

Ruby 3.3.11 Released

Ruby 3.3.11 has been released. This release includes an update to the zlib gem addressing CVE-2026-27820, along with some bug fixes.

Continue Reading...

Posted by hsbt on 26 Mar 2026

Ruby 4.0.2 Released

Ruby 4.0.2 has been released.

Continue Reading...

Posted by k0kubun on 16 Mar 2026

Ruby 3.4.9 Released

Ruby 3.4.9 has been released.

Continue Reading...

Posted by nagachika on 11 Mar 2026