[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ruby-talk
Subject:    [ANN] Ruby 3.0.3, 2.7.5 and 2.6.9 Released
From:       "U.NAKAMURA" <usa () garbagecollect ! jp>
Date:       2021-11-24 13:45:36
Message-ID: 20211124224536.2975.C613B076 () garbagecollect ! jp
[Download RAW message or body]

Hi, all

We've just released Ruby 3.0.3, 2.7.5 and 2.6.9.
How to download and details:

* [Ruby 3.0.3 Released](https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/)
                
* [Ruby 2.7.5 Released](https://www.ruby-lang.org/en/news/2021/11/24/ruby-2-7-5-released/)
                
* [Ruby 2.6.9 Released](https://www.ruby-lang.org/en/news/2021/11/24/ruby-2-6-9-released/)


And, some secuirty issues are also opened.
You can check details:

* [CVE-2021-41819: Cookie Prefix Spoofing in \
CGI::Cookie.parse](https://www.ruby-lang.org/en/news/2021/11/24/cookie-prefix-spoofing-in-cgi-cookie-parse-cve-2021-41819/)
                
* [CVE-2021-41816: Buffer Overrun in \
CGI.escape_html](https://www.ruby-lang.org/en/news/2021/11/24/buffer-overrun-in-cgi-escape_html-cve-2021-41816/)


We strongly recommend to upgrade your ruby installations as soon as possible.


Regards,
-- 
U.Nakamaura <usa@garbagecollect.jp>


Unsubscribe: <mailto:ruby-talk-request@ruby-lang.org?subject=unsubscribe>
<http://lists.ruby-lang.org/cgi-bin/mailman/options/ruby-talk>


[prev in list] [next in list] [prev in thread] [next in thread]