security_release_practice 1.0.1 has been released

160 views
Skip to first unread message

st...@steveklabnik.com

unread,
Mar 8, 2013, 4:00:43 PM3/8/13
to ruby-sec...@googlegroups.com
I've released version 1.0.1 of `security_release_practice`, a gem that allows you to practice creating security releases.

## Summary

`security_release_practice` 1.0.0 contains a bug by which user input is computed to a symbol, leaking memory and possibly opening applications that use it to DoS attacks.

Anyone using 1.0.0 is advised to upgrade immediately.

## Notes

GitHub:

https://github.com/steveklabnik/security_release_practice

Commits:

https://github.com/steveklabnik/security_release_practice/compare/v1.0.0...v1.0.1

SHA1:

8fcf0ef96a38da3f2db7884600eb8299e6e9141f pkg/security_release_practice-1.0.1.gem

Reply all
Reply to author
Forward
0 new messages