15 Feb '13, 7am

★2013/02/15『【危険】Ruby on Rails の ActiveRecord におけるサービス運用妨害 (DoS) の脆弱性』JVN iPedia

Google Group : Serialized Attributes YAML Vulnerability with Rails 2.3 and 3.0 [CVE-2013-0277] Rails weblog : [SEC][ANN] Rails 3.2.12, 3.1.11, and 2.3.17 have been released!

Full article: http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-001554.html


Ruby on Rails Patches DoS, Remote Execution Flaws

threatpost.com 13 Feb '13, 6pm

Web app framework Ruby on Rails patched two security flaws this week in the open source framework that could have led to d...