Ruby 2.7.1 release, this is a bug fix release, brings some security fixes:
- CVE-2020-16255: JSON object is created vulnerabilities in insecure
- CVE-2020-10933: Socket library stacks exposed vulnerabilities
Ruby 2.6.6 version, version 2.5.8, and 2.4.10 versions are synchronized fix these vulnerabilities.
Details can be found announcement:
https://www.ruby-lang.org/en/news/2020/03/31/ruby-2-7-1-released/