An updated ruby package is available for CentOS-2
The following errata for CentOS-2 have been built and uploaded the the centos mirror:
RHSA-2004:635-01 Updated ruby package fixes denial of service issue
Files available:
irb-1.6.4-2.AS21.1.i386.rpm
ruby-1.6.4-2.AS21.1.i386.rpm
ruby-devel-1.6.4-2.AS21.1.i386.rpm
ruby-docs-1.6.4-2.AS21.1.i386.rpm
ruby-libs-1.6.4-2.AS21.1.i386.rpm
ruby-tcltk-1.6.4-2.AS21.1.i386.rpm
More details are available from the RedHat web site at
https://rhn.redhat.com/errata/rh21as-errata.html
The easy way to make sure you are up to date with all the latest patches is to run:
# yum update