[prev in list] [next in list] [prev in thread] [next in thread]
List: ruby-talk
Subject: [ANN] Ruby 3.0.3, 2.7.5 and 2.6.9 Released
From: "U.NAKAMURA" <usa () garbagecollect ! jp>
Date: 2021-11-24 13:45:36
Message-ID: 20211124224536.2975.C613B076 () garbagecollect ! jp
[Download RAW message or body]
Hi, all
We've just released Ruby 3.0.3, 2.7.5 and 2.6.9.
How to download and details:
* [Ruby 3.0.3 Released](https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/)
* [Ruby 2.7.5 Released](https://www.ruby-lang.org/en/news/2021/11/24/ruby-2-7-5-released/)
* [Ruby 2.6.9 Released](https://www.ruby-lang.org/en/news/2021/11/24/ruby-2-6-9-released/)
And, some secuirty issues are also opened.
You can check details:
* [CVE-2021-41819: Cookie Prefix Spoofing in \
CGI::Cookie.parse](https://www.ruby-lang.org/en/news/2021/11/24/cookie-prefix-spoofing-in-cgi-cookie-parse-cve-2021-41819/)
* [CVE-2021-41816: Buffer Overrun in \
CGI.escape_html](https://www.ruby-lang.org/en/news/2021/11/24/buffer-overrun-in-cgi-escape_html-cve-2021-41816/)
We strongly recommend to upgrade your ruby installations as soon as possible.
Regards,
--
U.Nakamaura <usa@garbagecollect.jp>
Unsubscribe: <mailto:ruby-talk-request@ruby-lang.org?subject=unsubscribe>
<http://lists.ruby-lang.org/cgi-bin/mailman/options/ruby-talk>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic