Hey folks,RubyInstaller contains OpenSSL version "OpenSSL 1.0.0k 5 Feb 2013" which contains the recently announced security vulnerability:I know the RubyInstaller policy is not to do new releases when there is a vulnerability in the downstream components. Do you guys have any instructions on how can we patch included OpenSSL manually to 1.0.0m or 1.0.1h?
I've found some binaries here (http://slproweb.com/products/Win32OpenSSL.html) but wasn't able to find a way to integrate them with RubyInstaller.