31 Jan '13, 10pm

Ruby on Rails Patched Again - eSecurity Planet

Ruby on Rails Patched Again - eSecurity Planet

For the third time this month, the developers of Ruby on Rails have released an update to patch a serious vulnerability. "The Rails developers described the updates released Monday as 'extremely critical' in a blog post and advised all users of the 3.0.x and 2.3.x Rails software branches to update immediately," writes Computerworld's Lucian Constantin . "According to a corresponding security advisory , the newly released Rails versions address a vulnerability in the Rails JSON (JavaScript Object Notation) code that allows attackers to bypass authentication systems, inject arbitrary SQL (Structured Query Language) into an application's database, inject and execute arbitrary code or perform a denial-of-service (DoS) attack against an application." "Ruby on Rails has had a bit of a tough go of it on the security front to start off 2013," writes Threatpost's Christoher Brook ....

Full article: http://www.esecurityplanet.com/patches/ruby-on-rails-patc...

Tweets

Ruby off the Rails: What The Rails Security Iss...

metafilter.com 02 Feb '13, 1am

What The Rails Security Issue Means For Your Startup summarizes the impact of recent arbitrary-code-execution security vul...

Ruby on Rails の JSON のパラメータ解析の脆弱性により任意のコードを実行される脆弱性(CVE-2013-0333)に関する検証レポート -

Ruby on Rails の JSON のパラメータ解析の脆弱性により任意のコードを実行され...

security.intellilink.co.jp 01 Feb '13, 5am

Vulnerability Note VU#628463: Ruby on Rails 3.0 and 2.3 JSON Parser vulnerability http://www.kb.cert.org/vuls/id/628463

Ruby on Rails by ChrisAlberg

freelancer.com 04 Feb '13, 8am

love talk greater detail design project can samples work site listed please contact convenience best regards juli , thanks...

Crawlers in ruby by tykkemand

freelancer.com 01 Feb '13, 9pm

Project Description: We're building a property listing site, and we'll need to crawl other sites to harvest data to show o...

Teaching Android/Java and Ruby on Rails

southofshasta.com 31 Jan '13, 6pm

Next week (February 4 - 8) I'll be teaching a 5-day Java/Android Bootcamp in San Francisco. There are a few seats left, an...

Разработчик Ruby on Rails. Aviasales.ru - Пхуке...

rubyjobs.ru 01 Feb '13, 12am

Aviasales.ru - Пхукет, Таиланд

Hey, it's Sunday and I've got a blog post on di...

tpitale.com 03 Feb '13, 11pm

Dividing Our Views and Templates in Rails 2013-02-03 TL;DR: I created a gem called simplest_view that makes it easy to mov...

Installing Ruby on Rails on Windows 7 vía @code...

codejobs.biz 09 Feb '13, 6am

You need to create a valid theme

security

kalzumeus.com 31 Jan '13, 3pm

Many Rails developers have not reacted to this news with the alacrity they should have. (See next question.) These applica...

Ruby on Rails vs PHP ¿Es posible compararlos? #...

maestrosdelweb.com 31 Jan '13, 10pm

Por favor, esto es un tormento. PHP o RR ? Todos buscamos resultados, y sobre todo en que apoyarnos para desarrollar el pr...

A must read by @rails_apps #Rails #Ruby

A must read by @rails_apps #Rails #Ruby

blog.railsapps.org 31 Jan '13, 5pm

This blog post discussed on Hacker News . Got a comment? Join the discussion! … Yesterday I was at an open house for Code ...

#softwaredevelopment Ruby on Rails Ubuntu - oDe...

odesk.com 03 Feb '13, 2pm

Ruby on Rails Ubuntu Hourly – More than 6 months - 30+ hrs/week - Posted 8 hours, 15 minutes ago ruby ubuntu Sign up to Ap...

Featured Job: 2 Ruby on Rails Developers – OOP ...

cv-library.co.uk 01 Feb '13, 6pm

2 Ruby on Rails Developers - OOP / MySQL / Ruby / JavaScript - £50K - SE London. If you a passionate Ruby on Rails Develop...

Ruby on Rails receives the third security patch...

networkworld.com 30 Jan '13, 1pm

IDG News Service - Developers of the Ruby on Rails Web development framework released versions 3.0.20 and 2.3.16 of the so...