[SEC] Rack vulnerability

[Benjamin Oakes]

Hello Rubyists,

Here's a Ruby-related security vulnerability that was fixed recently that I thought you should be aware of:

## Rack

Details: http://rack.github.com/ (see Feb 7th)

Gist: Upgrade Rack to a fixed version (released Feb 8 or later).  There may be some circumstances in Rails which make you unaffected, but it's better to be safe and just update.  For fixed versions, see https://rubygems.org/gems/rack

I haven't investigated into whether this is related to the earlier YAML vulnerabilities.  If anyone knows details, please share.

Ben

[Dan Bernier]

Thanks Ben! Upgrading now.

--
You received this message because you are subscribed to the Google Groups "newhaven.rb" group.
To unsubscribe from this group and stop receiving emails from it, send an email to newhavenrb+...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
 
 

--
twitter @danbernier
http://wordcram.org | http://newhavenrb.org