2020 Archives

CVE-2020-25613: Potential HTTP Request Smuggling Vulnerability in WEBrick

A potential HTTP request smuggling vulnerability in WEBrick was reported. This vulnerability has been assigned the CVE idenfitifer CVE-2020-25613. We strongly recommend upgrading the webrick gem.

Continue Reading...

Ruby 3.0.0 Preview 1 Released

We are pleased to announce the release of Ruby 3.0.0-preview1.

Continue Reading...

2021 Fukuoka Ruby Award Competition - Entries to be judged by Matz

Dear Ruby Enthusiasts,

Continue Reading...

Support of Ruby 2.4 has ended

We announce that all support of the Ruby 2.4 series has ended.

Continue Reading...

Ruby 2.7.1 Released

Ruby 2.7.1 has been released.

Continue Reading...

Ruby 2.6.6 Released

Ruby 2.6.6 has been released.

Continue Reading...

Ruby 2.5.8 Released

Ruby 2.5.8 has been released.

Continue Reading...

Ruby 2.4.10 Released

Ruby 2.4.10 has been released.

Continue Reading...

CVE-2020-10933: Heap exposure vulnerability in the socket library

A heap exposure vulnerability was discovered in the socket library. This vulnerability has been assigned the CVE identifier CVE-2020-10933. We strongly recommend upgrading Ruby.

Continue Reading...

CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (Additional fix)

There is an unsafe object creation vulnerability in the json gem bundled with Ruby. This vulnerability has been assigned the CVE identifier CVE-2020-10663. We strongly recommend upgrading the json gem.

Continue Reading...