Ruby 3.1.5 has been released. This release includes security fixes. Please check the topics below for details. CVE-2024-27282: Arbitrary memory address read vulnerability with Regex search CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc CVE-2024-27280: Buffer overread vulnerability in StringIO See the GitHub releases for further details. Download https://cache.ruby-lang.org/pub/ruby/3.1/ruby-3.1.5.tar.gz SIZE: 20884264…
Ruby 3.3.2 has been released. This release includes many bug-fixes. See the GitHub releases for further details. Download https://cache.ruby-lang.org/pub/ruby/3.3/ruby-3.3.2.tar.gz SIZE: 22095824 SHA1: b49719ef383c581008c1fd3b68690f874f78557b SHA256: 3be1d100ebf2a0ce60c2cd8d22cd9db4d64b3e04a1943be2c4ff7b520f2bcb5b SHA512: a15ba8d6c2830fcd1f2b36f671acf9028c303ec78608fd268da0585db8e95ddd971666e8029bcfa2584da2184a6534e1f2f2da07fa7ca4494e8d842eed206f00 https://cache.ruby-lang.org/pub/ruby/3.3/ruby-3.3.2.tar.xz SIZE: 16349500 SHA1: 5c9f7d5cf55d9e45b24c613014cbe2b605de009d SHA256: b5e8a8ed4a47cdd9a3358b5bdd998c37bd9e971ca63766a37d5ae5933fdb69f1 SHA512: 70dd8eb933956f894c52a8ede42e8ee74ff0e062bd8134a0bfb6bffc83a2848a658b62c8df5530b4dd64087b2d5373909c48917528facb1e6f4e99e79b6ad449 https://cache.ruby-lang.org/pub/ruby/3.3/ruby-3.3.2.zip SIZE: 26981906 SHA1: ee641ef4a0c5b9d12456c565d402841ae2ec5ab2 SHA256: 06bf1aa3336afed66e2f89b0be3542c980fcdd76ffad0be284a860f25edea5b1 SHA512: e2bbff1fbe5d9a892bd9c21fe9f10ea7b23f111f3876538bffea3d5451645e155f9ddc61345a44e409d44f83e190ffe30b9c90cd75905dc079cf8803f2f8ccdf Release Comment Many committers, developers,…
We are excited to announce that Ruby’s official website, ruby-lang.org, has adopted Datadog for monitoring by Datadog OSS community support. This allows us to effectively monitor the performance and availability of the site in real time for Ruby users. This key benefits of using Datadog include the following. CDN Visibility…
Ruby 3.1.6 has been released. Ruby 3.1 series is now in the security maintenance phase. In general, we will fix only security issues in this phase. But we have several build failure issues after the release of Ruby 3.1.5. We decided to release Ruby 3.1.6 to fix these issues. Please…
There is a DoS vulnerability in REXML gem. This vulnerability has been assigned the CVE identifier CVE-2024-35176. We strongly recommend upgrading the REXML gem. Details When parsing an XML document that has many < in an attribute value, REXML gem may take long time. Please update REXML gem to version…
We are pleased to announce the release of Ruby 3.4.0-preview1. Language changes String literals in files without a frozen_string_literal comment now behave as if they were frozen. If they are mutated a deprecation warning is emitted. These warnings can be enabled with -W:deprecated or by setting Warning[:deprecated] = true. To…
Ruby 3.3.3 has been released. This release includes: RubyGems 3.5.11 Bundler 2.5.11 REXML 3.2.8 strscan 3.0.9 --dump=prism_parsetree is replaced by --parser=prism --dump=parsetree Invalid encoding symbols raise SyntaxError instead of EncodingError Memory leak fix in Ripper parsing Bugfixes for YJIT, **{}, Ripper.tokenize, RubyVM::InstructionSequence#to_binary, --with-gmp, and some build environments Please see the…
In today’s evolving software development landscape, containerization technology has emerged as a key tool for developers aiming to enhance efficiency and ensure consistency across environments. Among the various container technologies available today, Linux Containers (LXC) and Docker are two of the most popular choices. Understanding the differences between these technologies…
Docker launched its 2024 State of Application Development Report, providing a deep-focus snapshot of today’s rapidly evolving world of software development. Based on a wide-ranging survey of more than 1,300 respondents, the report shares a broad array of findings about respondents’ work, including what tools they use, their processes and…
It is not often you can reflect back and pinpoint a moment where an entire industry changed, less often to pinpoint that moment and know you were there to see it first hand. On June 10th, 2014, day 2 of the first ever DockerCon, 16:04 seconds into his keynote speech,…