Posts Tagged ‘Ruby’

Brakeman – Rails Security Scanner

Code static analysis in applications is important to identify security vulnerabilities. if you need to check Ruby on Rails it is possible to use Brakeman. The project is intended to verify the security troubles in Ruby on Rails web framework source code at any phase of the development. It works on Rails 2.x, 3.x, and [...]


vulnerability discovered in Ruby

According to Ruby community web site a denial-of-service vulnerability has been discovered in the bigDecimal standard library. The impact of this hole can allow a hacker to launch a DoS attack by causing BigDecimal to parse an insanely large number, such as: BigDecimal(“9E69999999″).to_s(“F”) Ruby 1.8.6-p368 and all prior versions in addition to 1.8.7-p160 and all [...]