Google Groups

[SEC][ANN] Rack 1.2.8, a modular Ruby webserver interface


raggi Feb 7, 2013 7:10 PM
Posted in group: Rack Development
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello,

Today we are proud to announce the release of Rack 1.2.8.

= Rack, a modular Ruby webserver interface

Rack provides a minimal, modular and adaptable interface for developing web applications in Ruby.  By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call.
The exact details of this are described in the Rack specification, which all Rack applications should conform to.

== Changes

* February 7th, Thirty fifth public release 1.1.6, 1.2.8, 1.3.10
  * Fix CVE-2013-0263, timing attack against Rack::Session::Cookie

== Where can I get it?

You can download Rack at
        http://chneukirchen.org/releases/rack-1.2.8.tar.gz   (upload pending at time of writing)
                  http://rubyforge.org/projects/rack

Alternatively, you can checkout from the development repository with:
    git clone git://github.com/rack/rack.git
cd rack && git checkout rack-1.2   # for this release

Happy hacking and have a nice day,

James Tucker
on behalf of the Rack Core Team.

6e272a4adf75adcd112bfd879196812975cd16bc  rack-1.2.8.tar.gz
dd19c41600f49709c3540028efbdb9fb9d0888b6  rack-1.2.8.gem
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (Darwin)

iQEcBAEBAgAGBQJRFGyVAAoJELphsezQxofDDHwH+QEubsq4hygg0tes3M29rpzj
fNuwrFOJaPDlZ2cJdSV+djtM1VNH78Yl6+254qpk3uk0nzjA6SrTNWMT6YHTVGv3
5MPiJdxOKnjmW9CsFAfRmdx4+te4jyDTHunBJjeAmhlhhsQKceydVnR0KkwekOYK
hcNYgr4DPWkPFfyXhuPUbXtFSqjpfbJRxEpiHkr81ufEPIeRU7M9WnOGORfMckOV
gxFvEvtsxMC9NvosTvi0oKe2jP5DCd4Fiml7qKGYt8GeZevmotFAhqSWD+GheSd7
Z9D4XCHViBVyThffCkjLpjw4zYJHpU3ccPlDgMvwDu15Ks0gw54B7c6TqzLyGuE=
=UTzz
-----END PGP SIGNATURE-----