Posted by nagachika on 7 Jul 2021
Ruby 3.0.2 has been released.
This release includes security fixes. Please check the topics below for details.
- CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP
- CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP
- CVE-2021-31799: A command injection vulnerability in RDoc
See the commit logs for details.
Download
-
https://cache.ruby-lang.org/pub/ruby/3.0/ruby-3.0.2.tar.gz
SIZE: 19941179 SHA1: e00784956ed2083a40e269d8b14e571b8fae9a0f SHA256: 5085dee0ad9f06996a8acec7ebea4a8735e6fac22f22e2d98c3f2bc3bef7e6f1 SHA512: e1fba6f5429b5fca9c3f52a32535615fcf95fafa415efc71c46db4cce159f249112c01574c305026be5c50140335696042e47a74194caea045acbfaa4da738cd
-
https://cache.ruby-lang.org/pub/ruby/3.0/ruby-3.0.2.tar.xz
SIZE: 14746080 SHA1: cd04711ed3adecbe244c3b4391e67430d11fa9f8 SHA256: 570e7773100f625599575f363831166d91d49a1ab97d3ab6495af44774155c40 SHA512: 0f702e2d8ca1342a9d4284dbdd234a3588e057b92566353aa7c21835cf09a3932864b2acf459a976960a1704e9befa562155d36b98b7cda8bd99526e10a374c4
-
https://cache.ruby-lang.org/pub/ruby/3.0/ruby-3.0.2.zip
SIZE: 24293508 SHA1: 9cde469fec5c9f8edd1d055fc4a9cc90b9611700 SHA256: 79e34f7fab000cb64ede8c39724ae240e36ee5905c752d77ec61a067d5e4e1dd SHA512: 2eb1ce4d66b06ccdee835a017c0edd4028fff99a29f4a631ffb5b39289afcb6a88f79eb24cf09e78d2baaa7c3e494448e2701a0a976bb092de6f2929f1934325
Release Comment
Many committers, developers, and users who provided bug reports helped us make this release. Thanks for their contributions.