Ruby 3.2.2 Released (UPDATED)
Ruby 3.2.2 has been released.
This release includes security fixes. Please check the topics below for details.
- CVE-2023-28755: ReDoS vulnerability in URI
- CVE-2023-28756: ReDoS vulnerability in Time
See the GitHub releases for further details.
[....]
This release also includes some bug fixes. See the GitHub releases for further details.
After this release, we end the normal maintenance phase of Ruby 3.0, and Ruby 3.0 enters the security maintenance phase. This means that we will no longer backport any bug fixes to Ruby 3.0 except security fixes.
The term of the security maintenance phase is scheduled for a year. Ruby 3.0 reaches EOL and its official support ends by the end of the security maintenance phase. Therefore, we recommend that you start to plan upgrade to Ruby 3.1 or 3.2.
UPDATE
All links related to this: