Plataformatec released a security advisory this morning
and recommended upgrading immediately.
Blog post:
http://blog.plataformatec.com.br/2013/01/security-announcement-devise-v2-2-3-v2-1-3-v2-0-5-and-v1-5-3-released/
Devise mailing list:
https://groups.google.com/forum/?fromgroups=#!topic/plataformatec-devise/hj6i26Dvshw
More discussion on Hacker News:
http://news.ycombinator.com/item?id=5128796
-Clint
--
You received this message because you are subscribed to the Google Groups "Spree" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.