[ANN] [SECURITY] Rack 1.3.1, a modular Ruby webserver interface

rack-devel archive mirror (unofficial) https://groups.google.com/group/rack-devel
 help / color / mirror / Atom feed

* [ANN] [SECURITY] Rack 1.3.1, a modular Ruby webserver interface
@ 2011-07-14 16:34 James Tucker
  2011-07-14 16:38 ` Christian Neukirchen
  0 siblings, 1 reply; 3+ messages in thread
From: James Tucker @ 2011-07-14 16:34 UTC (permalink / raw)
  To: Rack Development

Hello,

Today we are proud to announce the release of Rack 1.3.1.
This release is a *security release*, fixing a denial of service
vector from MRI stdlib backport.

= Rack, a modular Ruby webserver interface

Rack provides a minimal, modular and adaptable interface for developing web applications in Ruby.  By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call.
The exact details of this are described in the Rack specification, which all Rack applications should conform to.

== Changes

* July 13, 2011: Fifteenth public release 1.3.1
  * Fix 1.9.1 support
  * Fix JRuby support
  * Properly handle $KCODE in Rack::Utils.escape
  * Make method_missing/respond_to behavior consistent for Rack::Lock,
    Rack::Auth::Digest::Request and Rack::Multipart::UploadedFile
  * Reenable passing rack.session to session middleware
  * Rack::CommonLogger handles streaming responses correctly
  * Rack::MockResponse calls close on the body object
  * Fix a DOS vector from MRI stdlib backport

== Where can I get it?

You can download Rack 1.3.1 at
        http://chneukirchen.org/releases/rack-1.3.1.tar.gz
                  http://rubyforge.org/projects/rack

Alternatively, you can checkout from the development repository with:
    git clone git://github.com/rack/rack.git
    cd rack && git checkout rack-1.3   # for this release

Happy hacking and have a nice day,

        James Tucker
        on behalf of the Rack Core Team.

d0149b63b50b3c6b819ccabf6d93ce28f4de9db6  rack-1.3.1.tar.gz
a28af77f2538ab906dfe6233baaf27aef1e6b1a5  rack-1.3.1.gem

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [ANN] [SECURITY] Rack 1.3.1, a modular Ruby webserver interface
  2011-07-14 16:34 [ANN] [SECURITY] Rack 1.3.1, a modular Ruby webserver interface James Tucker
@ 2011-07-14 16:38 ` Christian Neukirchen
  2011-07-14 18:29   ` James Tucker
  0 siblings, 1 reply; 3+ messages in thread
From: Christian Neukirchen @ 2011-07-14 16:38 UTC (permalink / raw)
  To: Rack Development


Sorry, I thought the message hasn't been sent to rack-devel yet.
(And there were times when mailing lists respected Sender: and From:...)

-- 
Christian Neukirchen  <chneukirchen@gmail.com>  http://chneukirchen.org

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [ANN] [SECURITY] Rack 1.3.1, a modular Ruby webserver interface
  2011-07-14 16:38 ` Christian Neukirchen
@ 2011-07-14 18:29   ` James Tucker
  0 siblings, 0 replies; 3+ messages in thread
From: James Tucker @ 2011-07-14 18:29 UTC (permalink / raw)
  To: rack-devel

no problem.

On Jul 14, 2011, at 9:38 AM, Christian Neukirchen wrote:

> 
> Sorry, I thought the message hasn't been sent to rack-devel yet.
> (And there were times when mailing lists respected Sender: and From:...)
> 
> -- 
> Christian Neukirchen  <chneukirchen@gmail.com>  http://chneukirchen.org

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2011-07-14 18:29 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2011-07-14 16:34 [ANN] [SECURITY] Rack 1.3.1, a modular Ruby webserver interface James Tucker
2011-07-14 16:38 ` Christian Neukirchen
2011-07-14 18:29   ` James Tucker

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).