Ruby 2.2.0 Released
We are pleased to announce the release of Ruby 2.2.0.
Posted by naruse on 25 Dec 2014
Ruby 2.2.0-rc1 Released
We are pleased to announce the release of Ruby 2.2.0-rc1. After RC1, all changes will be limited to bug fix only. The final release of Ruby 2.2.0 is scheduled on December 25, 2014.
Posted by naruse on 18 Dec 2014
Ruby 2.2.0-preview2 Released
We are pleased to announce the release of Ruby 2.2.0-preview2.
Posted by naruse on 28 Nov 2014
Ruby 2.0.0-p598 Released
We are pleased to announce the release of Ruby 2.0.0-p598.
Posted by usa on 13 Nov 2014
Ruby 1.9.3-p551 Released
We are pleased to announce the release of Ruby 1.9.3-p551.
Posted by usa on 13 Nov 2014
CVE-2014-8090: Another Denial of Service XML Expansion
Unrestricted entity expansion can lead to a DoS vulnerability in REXML, like “Entity expansion DoS vulnerability in REXML (XML bomb, CVE-2013-1821)” and “CVE-2014-8080: Parameter Entity expansion DoS vulnerability in REXML”. This vulnerability has been assigned the CVE identifier CVE-2014-8090. We strongly recommend to upgrade Ruby.
Posted by usa on 13 Nov 2014
Tropical Ruby 2015 CFP is open
Tropical Ruby 2015, the beach Ruby conference, will take place during March 5–8th at Porto de Galinhas, a paradisiac beach located in the Brazilian northeast coast.
Posted by Guilherme Cavalcanti on 3 Nov 2014
Ruby 2.0.0-p594 Released
We are pleased to announce the release of Ruby 2.0.0-p594.
Posted by usa on 27 Oct 2014
Ruby 1.9.3-p550 Released
We are pleased to announce the release of Ruby 1.9.3-p550.
Posted by usa on 27 Oct 2014
CVE-2014-8080: Denial of Service XML Expansion
Unrestricted entity expansion can lead to a DoS vulnerability in REXML. This vulnerability has been assigned the CVE identifier CVE-2014-8080. We strongly recommend to upgrade Ruby.
Posted by zzak on 27 Oct 2014
Changed default settings of ext/openssl
We changed the default setting of ext/openssl in Ruby 2.1.4, Ruby 2.0.0-p594 and Ruby 1.9.3-p550. With this change, insecure SSL/TLS options are now disabled by default. However, by this change, there is a possibility of some problems in the SSL connection.
Posted by usa on 27 Oct 2014
Ruby 2.1.3 Released
We are pleased to announce the release of Ruby 2.1.3. This is a patchlevel release of the stable 2.1 series.
Posted by nagachika on 19 Sep 2014
Ruby 2.0.0-p576 Released
We are pleased to announce the release of Ruby 2.0.0-p576, to celebrate the holding of RubyKaigi2014 in Japan now.
Posted by usa on 19 Sep 2014
Ruby 2.2.0-preview1 Released
We are pleased to announce the release of Ruby 2.2.0-preview1.
Posted by naruse on 18 Sep 2014
ConFoo 2015 is looking for Ruby speakers
We are looking for Ruby professionals to share their skills and experience at the next ConFoo. Submit your proposals until September 22nd.
Posted by ylarrivee on 10 Sep 2014
Ruby 1.9.2-p330 Released
We have released 1.9.2-p330, the final release of the 1.9.2 series.
Posted by zzak and hone on 19 Aug 2014
RubyKaigi 2014 Registration Online
RubyKaigi 2014 registration page is now online.
Posted by snoozer05 on 26 Jul 2014
EOL for Ruby 1.8.7 and 1.9.2
Extended maintenance of Ruby versions 1.8.7 and 1.9.2 will end on July 31, 2014.
Posted by zzak and hone on 1 Jul 2014
RubyWorld Conference 2014 Speaker Invite
RubyWorld Conference will be held in Matsue, Japan on November 13-14, 2014.
Posted by zzak on 16 Jun 2014
Stopped mailing lists temporarily
We stopped the mailing lists on ruby-lang.org temporarily.
Posted by hsbt on 31 May 2014
Ruby 2.1.2 is released
We are pleased to announce the release of Ruby 2.1.2.
Posted by nagachika on 9 May 2014
Dispute of Vulnerability CVE-2014-2734
We were recently informed about a possible security vulnerability that has been published as CVE-2014-2734. However, based on our detailed analysis below, we do not consider Ruby to be vulnerable.
Posted by emboss on 9 May 2014
Ruby 2.0.0-p481 is released
We are pleased to announce the release of Ruby 2.0.0-p481.
Posted by usa on 9 May 2014
OpenSSL Severe Vulnerability in TLS Heartbeat Extension (CVE-2014-0160)
There is a severe vulnerability in OpenSSL’s implementation of the TLS/DTLS
(transport layer security protocols) heartbeat extension (RFC6520).
This a serious vulnerability which has been assigned the CVE identifier
CVE-2014-0160.
Posted by hone and zzak on 10 Apr 2014
Heap Overflow in YAML URI Escape Parsing (CVE-2014-2525)
There is an overflow in URI escape parsing of YAML in Ruby. This vulnerability has been assigned the CVE identifier CVE-2014-2525.
Posted by hone and zzak on 29 Mar 2014
eurucamp 2014 dates and CFP
eurucamp 2014 will be held around Berlin on August 1st to 3rd. eurucamp is an offspring of EuRuKo 2011 and has been held ever since.
Posted by Florian Gilcher on 15 Mar 2014
RubyConf Taiwan 2014 Registration Now Open
RubyConf Taiwan 2014 will be held in Taipei, Taiwan on 25-26 April, 2014.
Posted by Juanito Fatas on 14 Mar 2014
Regression of Hash#reject in Ruby 2.1.1
In Ruby 2.1.0 or earlier, the reject method in any class that inherits
Hash returns an object of its own class.
But in Ruby 2.1.1, this behavior has changed accidentally to return always
a plain Hash object, not of the inherited class.
Posted by sorah on 10 Mar 2014
Ruby 2.0.0-p451 is released
Today, Feb. 24th, is the 21st anniversary of Ruby, so we happily announce a new patch release, Ruby 2.0.0-p451.
Posted by nagachika on 24 Feb 2014
Ruby 2.1.1 is released
Today, Feb. 24th, is the 21st anniversary of Ruby, so we happily announce a new patch release of Ruby 2.1, Ruby 2.1.1.
Posted by naruse on 24 Feb 2014
Ruby 1.9.3-p545 is released
Happy birthday, Ruby! Today, Feb. 24th, is the 21st anniversary of Ruby. In commemoration of it, Ruby 1.9.3-p545 is released.
Posted by usa on 24 Feb 2014
2014 Ruby Hero Award Nominations
Has anyone helped you greatly in the Ruby community this past year? Maybe they taught you something, wrote a gem, or gave you some tech support? If anyone comes to mind, then please take the time to nominate them for a Ruby Hero Award.
Posted by Gregg Pollack on 12 Feb 2014
Abril Pro Ruby 2014, The Tropical Ruby Conference
Abril Pro Ruby 2014, the third edition of the Tropical Ruby Conference, will happen in April 26, 2014 at the Porto de Galinhas beach, a sunny paradise in the northeast of Brazil.
Posted by lailsonbm on 20 Jan 2014
Support for Ruby version 1.9.3 will end on February 23, 2015
Today we are announcing our plans for the future of Ruby version 1.9.3.
Posted by hsbt on 10 Jan 2014