Registration is now open for the Red Dirt RubyConf. Our "early bird" special ends in ten days, so sign-up now for the best prices.
We have an excellent program of speakers and a ton of surprises in store for attendees. We're starting this conference with a bang, so don't miss it!
Posted by James Edward Gray II on 17 Mar 2010
RubyNation, Washington D.C.’s Ruby Community Conference, will be held April 9 and 10, 2010, in Reston, VA, USA.
You can learn more and register here: http://rubynation.org/
But hurry! RubyNation is close to being sold out.
Posted by James Edward Gray II on 06 Mar 2010
A vulnerability was found on WEBrick, a part of Ruby's standard library. WEBrick lets attackers to inject malicious escape sequences to its logs, making it possible for dangerous control characters to be executed on a victim's terminal emulator.
We already have a fix for it. Releases for every active branches are to follow this announce. But for a meantime, we recommend you to avoid looking at your WEBrick logs, until you update your WEBrick process.
Posted by Urabe Shyouhei on 10 Jan 2010
We now have a series of patches to fix various bugs against 1.8.7 so I (Urabe Shyouhei) decided to release them. Here they are.
And excuse me for absence of a detailed release note... Please read the ChangeLog instead.
Posted by Urabe Shyouhei on 25 Dec 2009
Ruby 1.9.1-p376 just has been released. This is a patch level release of Ruby 1.9.1 and includes the fix of CVE-2009-4124.
The previous release, Ruby 1.9.1-p243 has a security vulnerability that allows heap overflow. This vulnerability was found by Emmanouel Kellinis, KPMG London.
I recommend all Ruby 1.9.1 users to upgrade to p376. But the vulnerability does not affect Ruby 1.8 series.
Posted by Yugui on 07 Dec 2009