Ruby on Rails Development Team Rushes to Plug the Publicly Disclosed SQL Injection Hole
WEBINAR: On-demand webcast
How to Boost Database Development Productivity on Linux, Docker, and Kubernetes with Microsoft SQL Server 2017 REGISTER >
The Rails developers have rushed to table to fix last week’s publicly disclosed SQL injection vulnerability and thus have released versions 3.2.10, 3.1.9, and 3.0.18 of the popular programming language framework. The Ruby team has apologized for releasing a security update so close to the holidays, but indicated that they were in fact forced to do so with the vulnerability being publicly disclosed and in order to assist those users who aren’t able to immediately upgrade to the latest versions of the development framework, the have also published a workaround and released manual patches that can be easily applied to older versions. Read the details here.