Ruby

April 2021 Archives

CVE-2021-28965: XML round-trip vulnerability in REXML

There is an XML round-trip vulnerability in REXML gem bundled with Ruby. This vulnerability has been assigned the CVE identifier CVE-2021-28965. We strongly recommend upgrading the REXML gem.

Continue Reading...

Posted by mame on 5 Apr 2021

CVE-2021-28966: Path traversal in Tempfile on Windows

There is an unintentional directory creation vulnerability in tmpdir library bundled with Ruby on Windows. And there is also an unintentional file creation vulnerability in tempfile library bundled with Ruby on Windows, because it uses tmpdir internally. This vulnerability has been assigned the CVE identifier CVE-2021-28966.

Continue Reading...

Posted by mame on 5 Apr 2021

Ruby 3.0.1 Released

Ruby 3.0.1 has been released.

Continue Reading...

Posted by naruse on 5 Apr 2021

Ruby 2.7.3 Released

Ruby 2.7.3 has been released.

Continue Reading...

Posted by nagachika on 5 Apr 2021

Ruby 2.6.7 Released

Ruby 2.6.7 has been released.

Continue Reading...

Posted by usa on 5 Apr 2021

Ruby 2.5.9 Released

Ruby 2.5.9 has been released.

Continue Reading...

Posted by usa on 5 Apr 2021

Archives by Year

Back to 2021 Archives