Posted by usa on 22 Feb 2013 Now Ruby 1.9.3-p392 is released. I apologize for updating too frequently. This release includes security fixes about bundled JSON and REXML. Denial of Service and Unsafe Object Creation Vulnerability in JSON (CVE-2013-0269) Entity expansion DoS vulnerability in REXML (XML bomb, CVE-2013-1821) And some small bugfixes are also included. See tickets and ChangeLog for deta