Ruby Org. has released security updates to address vulnerabilities in Ruby prior to versions 2.6.10, 2.7.6, 3.0.4 and 3.1.2. Exploitation of these vulnerabilities may allow an attacker to gain escalated privilege.
Users and administrators are encouraged to review Ruby Security Advisories buffer-overrun-in-string and double-free-in-regexp and apply necessary updates.