CVE-2024-35176: DoS in REXML
There is a DoS vulnerability in REXML gem. This vulnerability has been assigned the CVE identifier CVE-2024-35176. We strongly recommend upgrading the REXML gem.
Posted by kou on 16 May 2024
Ruby 3.4.0 preview1 Released
We are pleased to announce the release of Ruby 3.4.0-preview1.
Posted by naruse on 16 May 2024
Other News
-
Ruby 3.1.5 Released
Posted by hsbt on 23 Apr 2024 -
Ruby 3.0.7 Released
Posted by hsbt on 23 Apr 2024 -
CVE-2024-27282: Arbitrary memory address read vulnerability with Regex search
Posted by hsbt on 23 Apr 2024 -
CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc
Posted by hsbt on 21 Mar 2024 -
CVE-2024-27280: Buffer overread vulnerability in StringIO
Posted by hsbt on 21 Mar 2024 -
Ruby 3.2.3 Released
Posted by nagachika on 18 Jan 2024