Bump up resolv-0.6.2 for Ruby 3.4 #13818

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merged

k0kubun merged 1 commit into ruby:ruby_3_4 from hsbt:resolv-0-6-2

Jul 8, 2025

Member

hsbt commented Jul 8, 2025

@k0kubun resolv-0.6.2 fixed https://www.ruby-lang.org/en/news/2025/07/08/dos-resolv-cve-2025-24294/

But that contained a bit for feature changes for Windows. I rewrite the feature about the DNS server with Powershell if failing to load win32-registry.

If you want to only vulnerability changes for Ruby 3.4, I will create and release resolv-0.6.0.1 for that.


          Bump up resolv-0.6.2 for Ruby 3.4

f2eeaec

hsbt requested a review from k0kubun as a code owner

July 8, 2025 07:45

k0kubun approved these changes

View reviewed changes

Member

k0kubun commented Jul 8, 2025

If you want to only vulnerability changes for Ruby 3.4, I will create and release resolv-0.6.0.1 for that.

We could publish resolv-0.6.0.1 whenever somebody requests that.

Because we can do that afterwards for gems, the next 3.4 release will have resolv-0.6.2 (unless we end up releasing resolv-0.6.0.1 first) and other regular changes. FYI, we've planned on releasing 3.4.5 in July https://www.ruby-lang.org/en/news/2025/05/14/ruby-3-4-4-released/, and it's scheduled next Monday in my calendar.

k0kubun merged commit 5cd408a into ruby:ruby_3_4

76 checks passed

hsbt deleted the resolv-0-6-2 branch

July 8, 2025 21:19

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet