2013 Archives

Ruby 2.1.0 is released

We are pleased to announce the release of Ruby 2.1.0.

Continue Reading...

Semantic Versioning starting with Ruby 2.1.0

We’ve decided to move to a Semantic Versioning-type policy starting with the release of Ruby 2.1.0.

Continue Reading...

Ruby 2.1.0-rc1 is released

We are pleased to announce the release of Ruby 2.1.0-rc1. Please test the new features in Ruby 2.1 before the final release scheduled on 2013-12-25!

Continue Reading...

Security Maintenance Extension of Ruby 1.8.7 and 1.9.2

Effective immediately, 1.8.7 and 1.9.2 will be supported for security patches until June 2014.

Continue Reading...

RubyConf India 2014 Call For Proposals and Tickets Now Open!

RubyConf India 2014 will be held in Goa, India on 22-23 March, 2014.

Continue Reading...

The RubyConf Taiwan 2014 Call For Proposals is Now Open

The RubyConf Taiwan 2014 will take place on April 25-26, 2014 in Taipei, Taiwan.

Continue Reading...

Russian translation of ruby-lang.org

We just released the Russian translation of ruby-lang.org.

Continue Reading...

Ruby 2.1.0-preview2 is released

We are pleased to announce the release of Ruby 2.1.0-preview2. Please test the new features in Ruby 2.1 before the final release!

Continue Reading...

Heap Overflow in Floating Point Parsing (CVE-2013-4164)

There is an overflow in floating point number parsing in Ruby. This vulnerability has been assigned the CVE identifier CVE-2013-4164.

Continue Reading...

Ruby 1.9.3-p484 is released

Now Ruby 1.9.3-p484 is released.

Continue Reading...

Ruby 2.0.0-p353 is released

Now Ruby 2.0.0-p353 is released.

Continue Reading...

2014 Fukuoka Ruby Award Competition - Entries to be judged by Matz

Dear Ruby Enthusiasts,

Continue Reading...

RubyConf Australia 2014 Call For Proposals and Tickets Now Open!

RubyConf Australia 2014 will be held in Sydney on February 19 to 21. It will be the second Ruby conference held in Australia.

Continue Reading...

Design Contest for www.ruby-lang.org

The Ruby Association will be hosting a design contest for the new design of ruby-lang.org.

Continue Reading...

Ruby 2.1.0-preview1 is released

We are pleased to announce the release of Ruby 2.1.0-preview1. Please check out the new features in Ruby 2.1 before the final release!

Continue Reading...

We started distributing source packages via Fastly

ruby-lang.org started to provide http://cache.ruby-lang.org for distributing official Ruby source packages. We can now fastly distribute packages all over the world using a content delivery network (CDN).

Continue Reading...

Vietnamese translation of ruby-lang.org

We just released the Vietnamese translation of ruby-lang.org.

Continue Reading...

ConFoo 2014 is looking for Ruby speakers

We are looking for Ruby professionals to share their skills and experience at the next ConFoo. Submit your proposals until September 22nd.

Continue Reading...

We retire raa.ruby-lang.org

We decided to suspend raa.ruby-lang.org, also known as “Ruby Application Archive (RAA)”. We have no server or human resources to continue hosting raa.ruby-lang.org. If you still need to browse raa.ruby-lang.org, please visit RAA in the Internet Archive.

Continue Reading...

Service issue of ruby-lang.org

Some services provided by ruby-lang.org are stopped, because the servers of ruby-lang.org are currently down.

Continue Reading...

We retire Ruby 1.8.7

I wish I could say something epic but sadly my English skill is very limited, so I just say what I say: it’s the end, as planned.

Continue Reading...

Ruby 2.0.0-p247 is released

Now Ruby 2.0.0-p247 is released.

Continue Reading...

Ruby 1.9.3-p448 is released

Now Ruby 1.9.3-p448 is released.

Continue Reading...

Ruby 1.8.7-p374 is released

Now Ruby 1.8.7-p374 is released.

Continue Reading...

Hostname check bypassing vulnerability in SSL client (CVE-2013-4073)

A vulnerability in Ruby’s SSL client that could allow man-in-the-middle attackers to spoof SSL servers via valid certificate issued by a trusted certification authority.

Continue Reading...

A brand-new ruby-lang.org has been released

On behalf of the Ruby community, we are pleased to announce to you that a brand-new ruby-lang.org is now live!

Continue Reading...

Ruby 1.9.3-p429 is released

Now Ruby 1.9.3-p429 is released. We once released p426 some hours before, but it had build problems on some platforms. Use this p429 instead, please.

Continue Reading...

Ruby 2.0.0-p195 is released

Ruby 2.0.0-p195 is released. This is the first patchlevel release of 2.0.0.

Continue Reading...

Object taint bypassing in DL and Fiddle in Ruby (CVE-2013-2065)

There is a vulnerability in DL and Fiddle in Ruby where tainted strings can be used by system calls regardless of the $SAFE level set in Ruby. This vulnerability has been assigned the CVE identifier CVE-2013-2065.

Continue Reading...

Ruby 2.0.0-p0 is released

We are pleased to announce the release of Ruby 2.0.0-p0.

Continue Reading...

Ruby 1.9.3-p392 is released

Now Ruby 1.9.3-p392 is released. I apologize for updating too frequently.

Continue Reading...

Entity expansion DoS vulnerability in REXML (XML bomb, CVE-2013-1821)

Unrestricted entity expansion can lead to a DoS vulnerability in REXML. This vulnerability has been assigned the CVE identifier CVE-2013-1821. We strongly recommend to upgrade ruby.

Continue Reading...

Denial of Service and Unsafe Object Creation Vulnerability in JSON (CVE-2013-0269)

There is a denial of service and unsafe object creation vulnerability in the json bundled with ruby. This vulnerability has been assigned the CVE identifier CVE-2013-0269. We strongly recommend to upgrade ruby.

Continue Reading...

The Barcelona Ruby Conference Call for Papers is Open

Barcelona Ruby Conference is a conference that takes place in the heart of Catalunya, Spain this September 14-15. Starring world-class speakers as Aaron Patterson (rails and ruby core), David Chelimsky (The RSpec book author, RSpec core member), Charles Nutter (JRuby maintainer), Sandi Metz (Practical Object-Oriented Design in Ruby author) or Yukihiro Matz (the Ruby language creator), among others.

Continue Reading...

The 2013 Ruby Hero Awards

The Ruby Hero Awards are now accepting nominations and we need your help to find people in our community who thanklessly help others and perhaps don’t get the recognition they deserve. This could be someone who contributes to ruby open source software you’ve found useful in the past year, could be an educator, or maybe someone who’s helped organize Ruby events.

Continue Reading...

Ruby 2.0.0-rc2 is released

Ruby 2.0.0-rc2 is released. This will be the last release candidate of Ruby 2.0.0.

Continue Reading...

Ruby 1.9.3-p385 is released

Now Ruby 1.9.3-p385 is released.

Continue Reading...

XSS exploit of RDoc documentation generated by rdoc (CVE-2013-0256)

RDoc documentation generated by rdoc bundled with ruby are vulnerable to an XSS exploit. All ruby users are recommended to update ruby to newer version which includes security-fixed RDoc. If you are publishing RDoc documentation generated by rdoc, you are recommended to apply a patch for the documentation or re-generate it with security-fixed RDoc.

Continue Reading...

ConFoo with Ruby in Montreal

If you have never heard of ConFoo, it is one of the most important developer-oriented conferences. The team brings 100 speakers from around the globe to share their hands-on experience with various web technologies. The best news is: it’s driven by the community and is non profit!

Continue Reading...

Ruby 1.9.3-p374 is released

Now Ruby 1.9.3-p374 is released.

Continue Reading...