Ruby -- XSS exploit of RDoc documentation generated by rdoc

2013-02-06T00:00:00
ID D3E96508-056B-4259-88AD-50DC8D1978A6
Type freebsd
Reporter FreeBSD
Modified 2013-02-06T00:00:00

Description

Ruby developers report:

RDoc documentation generated by rdoc bundled with ruby are vulnerable to an XSS exploit. All ruby users are recommended to update ruby to newer version which includes security-fixed RDoc. If you are publishing RDoc documentation generated by rdoc, you are recommended to apply a patch for the documentaion or re-generate it with security-fixed RDoc.