29 Aug '17, 2pm

Multiple vulnerabilities in RubyGems

Multiple vulnerabilities in RubyGems Posted by usa on 29 Aug 2017 There are multiple vulnerabilities in RubyGems bundled by Ruby. It is reported at the official blog of RubyGems . Details The following vulnerabilities have been reported. a DNS request hijacking vulnerability an ANSI escape sequence vulnerability a DoS vulernerability in the query command a vulnerability in the gem installer that allowed a malicious gem to overwrite arbitrary files It is strongly recommended for Ruby users to take one of the following workarounds as soon as possible. Affected Versions Ruby 2.2 series: 2.2.7 and earlier Ruby 2.3 series: 2.3.4 and earlier Ruby 2.4 series: 2.4.1 and earlier prior to trunk revision 59672 Workarounds At this moment, there are no Ruby releases including the fix for RubyGems. But you can upgrade RubyGems to the latest version. RubyGems 2.6.13 or later includes the...

Full article: https://www.ruby-lang.org/en/news/2017/08/29/multiple-vul...

Tweets

RubyGems

ruby-lang.org 29 Aug '17, 2pm

a DNS request hijacking vulnerability an ANSI escape sequence vulnerability a DOS vulernerability in the query command a v...

Multiple vulnerabilities in RubyGems

ruby-lang.org 30 Aug '17, 1pm

Multiple vulnerabilities in RubyGems Posted by usa on 29 Aug 2017 There are multiple vulnerabilities in RubyGems bundled b...

Ruby Weekly ➜ #364: Multiple Vulnerabilities in RubyGems https://t.co/DlUnGYPErC

Ruby Weekly ➜ #364: Multiple Vulnerabilities in...

rubyweekly.com 31 Aug '17, 4pm

ruby-lang.org Multiple Vulnerabilities in RubyGems, Upgrade Now It’s time to run gem update --system and get up to RubyGem...

Keeping it Together: Managing a Network Across ...

blogtrepreneur.com 30 Aug '17, 1pm

Keeping it Together: Managing a Network Across Multiple Locations This is a sponsored post written by me on behalf of CBTS...

Florida Veterinarian Arrested on Multiple Counts of Felony Animal Cruelty #care2

Florida Veterinarian Arrested on Multiple Count...

care2.com 29 Aug '17, 10pm

Wouldn’t you expect a veterinarian to be a fierce animal protector? Sadly, that’s not always the case. The latest disappoi...

[blog] gbifrb: 1st ver of a @GBIF #ruby client ...

rubygems.org 08 Sep '17, 12am

Status Uptime Code Data Discuss Stats Blog About Help API Security RubyGems.org is the Ruby community’s gem hosting servic...