Hacker News new | comments | show | ask | jobs | submit login

3 links on HN frontpage for this same vulnerability proves the love of the community to warn each other tenderly.

There's actually two vulnerability announcements: https://groups.google.com/forum/?fromgroups=#!topic/rubyonra...

This one deals with problematic JSON parsing and affects only 3.x. It is dealt with in the release that fixes the other vulnerability

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact