{"blog_title":"ruby trunk changes","provider_url":"https://hatena.blog","categories":["ruby","changes"],"blog_url":"https://ruby-trunk-changes.hatenablog.com/","html":"","image_url":null,"author_url":"https://blog.hatena.ne.jp/nagachika/","provider_name":"Hatena Blog","version":"1.0","height":"190","url":"https://ruby-trunk-changes.hatenablog.com/entry/20131122/ruby_trunk_changes_43766_43803","type":"rich","published":"2013-11-22 00:00:00","width":"100%","title":"ruby-trunk-changes r43766 - r43803","description":"\u4eca\u65e5\u306f\u6d6e\u52d5\u5c0f\u6570\u70b9\u6570\u306e\u6587\u5b57\u5217\u304b\u3089\u306e\u30d1\u30fc\u30b9/\u5909\u63db\u6642\u306b\u9577\u3044\u6587\u5b57\u5217\u3092\u6e21\u3059\u3068\u3068\u3066\u3082\u6642\u9593\u304c\u304b\u304b\u308b\u3068\u3044\u3046\u554f\u984c\u3092\u4fee\u6b63\u3057\u305f\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d5\u30a3\u30c3\u30af\u30b9\u304c\u3042\u308a\u307e\u3057\u305f\u3002\u3053\u308c\u3092\u53d7\u3051\u3066 2.0.0-p353, 1.9.3-p484 \u304c\u305d\u308c\u305e\u308c\u30ea\u30ea\u30fc\u30b9\u3055\u308c\u307e\u3057\u305f\u3002\u95a2\u4fc2\u8005\u306e\u7686\u69d8\u304a\u75b2\u308c\u3055\u307e\u3067\u3057\u305f\u3002\u7279\u306b @hsbt \u3055\u3093\u306b\u306f\u3044\u3064\u3082\u30ea\u30ea\u30fc\u30b9\u30a2\u30ca\u30a6\u30f3\u30b9\u306e\u63b2\u8f09\u306a\u3069\u3067\u304a\u4e16\u8a71\u306b\u306a\u3063\u3066\u304a\u308a\u307e\u3059\u3002\u6d6e\u52d5\u5c0f\u6570\u70b9\u6570\u30d1\u30fc\u30b9\u306b\u304a\u3051\u308b\u30d2\u30fc\u30d7\u30aa\u30fc\u30d0\u30fc\u30d5\u30ed\u30fc (CVE-2013-4164) https://www.ruby-lang.org/ja/news/2013/11/22/heap-overflow-in-floating-point-parsing-cv\u2026","author_name":"nagachika"}