Actions
Bug #20385
closedBackport CVE-2024-27280
Description
I disclosed https://www.ruby-lang.org/en/news/2024/03/21/buffer-overread-cve-2024-27280/ today.
This StringIO versions should be backported in the next release.
- For Ruby 3.0: https://github.com/ruby/ruby/pull/10320
- For Ruby 3.1: https://github.com/ruby/ruby/pull/10321
No data to display
Actions
Like0