ruby-activerecord-3.2 - security update

• CVE-2015-7577
  activerecord/lib/active_record/nested_attributes.rb in Active Record
  does not properly implement a certain destroy option, which allows
  remote attackers to bypass intended change restrictions by leveraging
  use of the nested attributes feature.

For Debian 7 Wheezy, this problem have been fixed in version
3.2.6-5+deb7u2.

We recommend that you upgrade your ruby-activerecord-3.2 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: <https://wiki.debian.org/LTS&gt;