Necessary to pick up latest version with new features, bug fixes, new
Data primitive, Web Assembly support, and much more.
https: //www.ruby-lang.org/en/news/2022/12/06/ruby-3-2-0-rc1-released
Necessary to address the following security issue:
CVE-2021-33621: HTTP response splitting in CGI
This also fixes a build failure with Xcode 14 and macOS 13 (Ventura).
Fixes a WEBrick security flaw but also disables deprecation warnings by
default which is sad to see. We'll have to enable these ourselves if we
want to have an early warning sign of future breaking changes. 😢
[Release Notes](https://chl.li/lLaOn)
Addresses the following security issues:
- CVE-2020-16255: Unsafe Object Creation Vulnerability in JSON
(Additional fix)
- CVE-2020-10933: Heap exposure vulnerability in the socket library
[Details](https://chl.li/ljREu).
Resolves several security vulnerabilities:
- CVE-2019-16255: A code injection vulnerability of Shell#[] and
Shell#test
- CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix)
- CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and
File.fnmatch?
- CVE-2019-16201: Regular Expression Denial of Service vulnerability of
WEBrick’s Digest access authentication
[Details](https://is.gd/qWSrzR)
Fixed major issue with `Net::Protocol::BufferedIO#write` raising
`NoMethodError` when sending large multi-byte strings.
[Details](https://is.gd/cQ8wcl).
