The developers of Ruby on Rails released patches to close vulnerabilities that could have allowed denial of service (DoS) attacks and cross-site scripting (XSS) injections.
Source:
http://threatpost.com/en_us/blogs/ruby-rails-patches-dos-xssvulnerabilities- 031913