OFBiz OFBiz - User

[ANNOUNCE] Apache OFBiz 12.04.02 released

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
1 message Options
jacopoc
Reply | Threaded
Open this post in threaded view
|

[ANNOUNCE] Apache OFBiz 12.04.02 released

jacopoc
The Apache OFBiz community is pleased to announce the new release "Apache OFBiz 12.04.02".

Apache OFBiz is an open source enterprise automation software project (ERP, CRM, E-Business / E-Commerce, MRP, SCM, CMMS/EAM...):

http://ofbiz.apache.org/

"Apache OFBiz 12.04.02" is a bug fix release for the 12.04 series; all users of "Apache OFBiz 12.04.01" release are encouraged to upgrade to this latest release because the new release contains several bug fixes including fixes for the following security vulnerabilities:

CVE-2013-2137 - XSS vulnerability in the "View Log" screen of the OFBiz Webtools application
CVE-2013-2250 - Nested expression evaluation allows remote users to execute arbitrary UEL functions in OFBiz

See also:

http://ofbiz.apache.org/download.html#vulnerabilities

The release file can be downloaded following the instructions in the OFBiz download page :

http://ofbiz.apache.org/download.html

The OFBiz Team.

signature.asc (858 bytes) Download Attachment
Free forum by Nabble Edit this page