The Marshal Madness: A Decade of Futile Patches for a Ruby Vulnerability
Since the introduction of serialization through the Marshal module in the Ruby programming language, developers and security experts have been drawn into a protracted game of “bypass and patch.” The history of these vulnerabilities...