A couple of security vulnerabilities have been reported in Ruby-on-Rails which is an important part of the software stack used by OpenProject. Please find the details here:

http://weblog.rubyonrails.org/2015/6/16/Rails-3-2-22-4-1-11-and-4-2-2-have-been-released-and-more/ Begin of the insertion
End of the insertion