August 2008 Archives

DoS vulnerability in REXML

There is a DoS vulnerability in the REXML library included in the Ruby Standard Library. A so-called "XML entity explosion" attack technique can be used for remotely bringing down (disabling) any application which parses user-provided XML using REXML.

Continue Reading...

Ruby 1.8.7-p72 and 1.8.6-p287 released

Ruby 1.8.7-p72 and 1.8.6-p287 have been released. The last releases were incomplete, and the new releases include fixes of the previously announced vulnerability of dl.

Continue Reading...

Multiple vulnerabilities in Ruby

Multiple vulnerabilities have been discovered in Ruby. It's recommended that you upgrade to the latest versions.

Continue Reading...

RubyConf 2008 Proposals Now Being Accepted

RubyConf 2008 will be held in Orlando, Florida, USA, from November 6 to November 8.

Continue Reading...

<< Back to 2008 Archives