Closed shpatel2 closed 2 years ago
Sorry for the delay! This ruby release series arrived me at the worst point in time - just when I started into vacation with no suitable internet connection. And https://github.com/oneclick/rubyinstaller2/issues/274 blocked a quick release. I'll make the releases today.
@larskanis Thank you!
What problems are you experiencing?
Ruby version 2.7.6 is released which fixes CVE-2022-28739: Buffer overrun in String-to-Float conversion, however RubyInstaller isn't updated.
Please see: https://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/
Steps to reproduce
N/A
What's the output from
ridk version
?n/A