Groups
Sign in
Groups
rubysec-announce
Conversations
About
Send feedback
Help
Ruby 1.9.3-p392 is released (includes two security fixes)
73 views
Skip to first unread message
m...@state.io
unread,
Feb 24, 2013, 4:07:33 PM
2/24/13
Reply to author
Sign in to reply to author
Forward
Sign in to forward
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to rubysec-...@googlegroups.com
Hello,
Ruby 1.9.3-p392 was released on Friday and includes 2 security patches.
- Denial of Service and Unsafe Object Creation Vulnerability in JSON (CVE-2013-0269)
http://www.ruby-lang.org/en/news/2013/02/22/json-dos-cve-2013-0269/
- Entity expansion DoS vulnerability in REXML (XML bomb)
http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/
More information here:
http://www.ruby-forum.com/topic/4411203
- Max Veytsman
Reply all
Reply to author
Forward
0 new messages