RSS

Users Of Ruby On Rails Urged To Update

Chris Crum
Staff Writer
2006-08-10

Insider Reports RSS Feed

A security flaw has been discovered in the Ruby on Rails framework, and the team is urging users to get what they are calling a "mandatory" update.

CNET reports:

"The issue is in fact of such a criticality that we're not going to dig into the specifics," the team said in a statement. However, the flaw does appear to be in the Rails framework rather than in the Ruby language itself.

The team has promised to release more details of the problem in Rails, but said it wants to give users a chance to fix their systems before giving out information that could help attackers. Rails was created by David Heinemeier Hansson and reached version 1.0 in December of last year.

It is certainly smart to hold off on the specifics for a bit, so people have a chance to get updated, because you know the attackers are foaming at the mouth waiting to exploit it.

The update can be downloaded from the Rails site, or through the Gems package management system.

Tag: Ruby, Rails

Add to

Del.icio.us |

Digg |

Yahoo! My Web |

Furl

About the Author:
Chris Crum is a staff writer for SecurityProNews and WebProNews.

More news_security_news Articles

Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Featured On:

article resources

WebProWorld.com

•	Get in-touch with industry experts and leaders
•	Post your site for review by expert and peers
•	Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com


Titan Quest Forum The #1 Titan Quest forum
Halo 3 Forum The best Halo, Halo 2, Halo 3 forum
Nintendo Wii Nintendo Wii news and views
Mac Software The best in OS X freeware
Graphics Forum Your source for graphic tutorials