We’ve pushed updated Ubuntu Ruby 1.9.3 packages to our experimental launchpad repository.
They’re from upstream 1.9.3-p327, which fixes the hash-flooding DoS vulnerability (CVE-2012-5371), and they also update Sokolov Yura’s performance patches (which includes Narihiro Nakamura’s Bitmap Marking garbage collector, for copy-on-write powered memory savings).
We’ve tested them out over the last couple of day, but please let us know how you get on (drop us an email to support at brightbox.com)
We’ll push these to the production repository once they’ve been tested a bit more thoroughly.
If you’re using our Ruby 1.8.7 packages, remember that 1.8.7-p370 fixes some security bugs and other issues. Those packages have been available in our production repository for a while now - get yourself upgraded! (p371 packages coming soon too).