Over a million developers have joined DZone.

A Security Flaw in Ruby on Rails

· Cloud Zone

Download the Essential Cloud Buyer’s Guide to learn important factors to consider before selecting a provider as well as buying criteria to help you make the best decision for your infrastructure needs, brought to you in partnership with Internap.

The official Ruby on Rails blog recently announced  the release of two "extremely critical security fixes" for a major security flaw.  In response, Heroku also released a how-to for upgrading Heroku  apps that run on Rails.  The Heroku team warns that "If you do not upgrade, an attacker can trivially gain access to your application, its data, and run arbitrary code or commands."  You can check out both posts by below.

Heroku Blog - Rails Security Vulnerability

Ruby on Rails Blog - Rails 3.2.11, 3.1.10, 3.0.19, and 2.3.15 Have Been Released!

The Cloud Zone is brought to you in partnership with Internap. Read Bare-Metal Cloud 101 to learn about bare-metal cloud and how it has emerged as a way to complement virtualized services.

Topics:

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}