Received: by 10.42.161.74 with SMTP id s10mr26155980icx.5.1325267353181;
Fri, 30 Dec 2011 09:49:13 -0800 (PST)
X-BeenThere: emm-ruby@googlegroups.com
Received: by 10.50.178.42 with SMTP id cv10ls10853589igc.2.gmail; Fri, 30 Dec
2011 09:49:12 -0800 (PST)
Received: by 10.50.185.202 with SMTP id fe10mr18883397igc.3.1325267352614;
Fri, 30 Dec 2011 09:49:12 -0800 (PST)
Received: by 10.50.185.202 with SMTP id fe10mr18883396igc.3.1325267352605;
Fri, 30 Dec 2011 09:49:12 -0800 (PST)
Return-Path: <mpchl...@gmail.com>
Received: from mail-tul01m020-f172.google.com (mail-tul01m020-f172.google.com [209.85.214.172])
by gmr-mx.google.com with ESMTPS id dk6si1372383igb.1.2011.12.30.09.49.12
(version=TLSv1/SSLv3 cipher=OTHER);
Fri, 30 Dec 2011 09:49:12 -0800 (PST)
Received-SPF: pass (google.com: domain of mpchl...@gmail.com designates 209.85.214.172 as permitted sender) client-ip=209.85.214.172;
Authentication-Results: gmr-mx.google.com; spf=pass (google.com: domain of mpchl...@gmail.com designates 209.85.214.172 as permitted sender) smtp.mail=mpchl...@gmail.com; dkim=pass (test mode) header...@gmail.com
Received: by obcuz6 with SMTP id uz6so9884511obc.3
for <emm-ruby@googlegroups.com>; Fri, 30 Dec 2011 09:49:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=gamma;
h=mime-version:in-reply-to:references:date:message-id:subject:from:to
:content-type;
bh=HxS0EN7luvZBC96WnxqIQbbaOGWkHc5w/Mtip6j8QmM=;
b=DdlQbpMuvOIiataZj1rfZ4W+795u1x7niOXAXPXjm75EhdyH/W+dvp+NLQpVh5Ed8y
4GSQVyXdByRpH/PbiEqD5m5UP2Mk13k+9IhuDn1Ex7f+RFfhjHy7VazhqdH/OUT1KBXB
OVvC79otPPD3qjhYASmc+9f7OAoX2qlX8gB14=
MIME-Version: 1.0
Received: by 10.182.14.5 with SMTP id l5mr34533155obc.2.1325267352031; Fri, 30
Dec 2011 09:49:12 -0800 (PST)
Received: by 10.182.42.195 with HTTP; Fri, 30 Dec 2011 09:49:11 -0800 (PST)
In-Reply-To: <CAM3ce8HUptCZQSqB1hwu1TMraRobvTu5uPvMkUUDvsZDuBweoA@mail.gmail.com>
References: <a9b225d6-451b-464d-b2bf-cc1b490ee...@f11g2000yql.googlegroups.com>
<CAM3ce8HUptCZQSqB1hwu1TMraRobvTu5uPvMkUUDvsZDuBw...@mail.gmail.com>
Date: Fri, 30 Dec 2011 07:49:11 -1000
Message-ID: <CABgnXpboJy_1OXeExYH9tZ6WfiBbu33CsDk+-SxaAH6WB18...@mail.gmail.com>
Subject: Re: Ruby-ee Hash Algorithm Vulnerability
From: Michael Chletsos <mpchl...@gmail.com>
To: emm-ruby@googlegroups.com
Content-Type: text/plain; charset=ISO-8859-1
Thank you!!!
On Fri, Dec 30, 2011 at 7:46 AM, Hongli Lai <hon...@phusion.nl> wrote:
> On Thu, Dec 29, 2011 at 4:58 PM, michael <mpchl...@gmail.com> wrote:
>> I assume that the latest version of Ruby-EE is vulnerable to the
>> latest Hash Algorithm DoS attack:
>> http://www.ruby-lang.org/en/news/2011/12/28/denial-of-service-attack-was-found-for-rubys-hash-algorithm/
>>
>> Can someone confirm that this is the case, and possible know when this
>> will be patched/fixed?
>
> It has been patched as of today. The announcement hasn't been written
> yet, but the files can already be obtained at
> www.rubyenterpriseedition.com.
>
> --
> Phusion | Ruby & Rails deployment, scaling and tuning solutions
>
> Web: http://www.phusion.nl/
> E-mail: i...@phusion.nl
> Chamber of commerce no: 08173483 (The Netherlands)
>
> --
> You received this message because you are subscribed to the Google Groups "Ruby Enterprise Edition" group.
> To post to this group, send email to emm-ruby@googlegroups.com.
> To unsubscribe from this group, send email to emm-ruby+unsubscribe@googlegroups.com.
> For more options, visit this group at http://groups.google.com/group/emm-ruby?hl=en.
>
Message from discussion Ruby-ee Hash Algorithm Vulnerability
| Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy |
| ©2013 Google |