Ruby 2.1.4 Released
Ruby 2.1.4 has been released.
Posted by nagachika on 27 Oct 2014
Ruby 2.0.0-p594 Released
We are pleased to announce the release of Ruby 2.0.0-p594.
Posted by usa on 27 Oct 2014
Ruby 1.9.3-p550 Released
We are pleased to announce the release of Ruby 1.9.3-p550.
Posted by usa on 27 Oct 2014
CVE-2014-8080: Denial of Service XML Expansion
Unrestricted entity expansion can lead to a DoS vulnerability in REXML. This vulnerability has been assigned the CVE identifier CVE-2014-8080. We strongly recommend to upgrade Ruby.
Posted by zzak on 27 Oct 2014
Changed default settings of ext/openssl
We changed the default setting of ext/openssl in Ruby 2.1.4, Ruby 2.0.0-p594 and Ruby 1.9.3-p550. With this change, insecure SSL/TLS options are now disabled by default. However, by this change, there is a possibility of some problems in the SSL connection.
Posted by usa on 27 Oct 2014