Ruby 1.9.3-p429 is released
Now Ruby 1.9.3-p429 is released. We once released p426 some hours before, but it had build problems on some platforms. Use this p429 instead, please.
Posted by usa on 14 May 2013
Ruby 2.0.0-p195 is released
Ruby 2.0.0-p195 is released. This is the first patchlevel release of 2.0.0.
Posted by nagachika on 14 May 2013
Object taint bypassing in DL and Fiddle in Ruby (CVE-2013-2065)
There is a vulnerability in DL and Fiddle in Ruby where tainted strings can be used by system calls regardless of the $SAFE level set in Ruby. This vulnerability has been assigned the CVE identifier CVE-2013-2065.
Posted by usa on 14 May 2013