Redmine 3.1.1, 3.0.5 and 2.6.7 released

Added by Jean-Philippe Lang about 1 year ago

Redmine 3.1.1 is a maintenance release that includes 28 changes (Changelog). 3.0.5 and 2.6.7 are maintenance releases for 3.0.x and 2.6.x users.

Security: these 3 releases all include a fix for a security vulnerability (open redirect vulnerability). Users are encouraged to update to these fixed versions.

Comments

Added by Deoren Moor about 1 year ago

Thanks to the devs for all of their work on this. Happy upgrades everyone!

Added by [ Desperados ] 12 months ago

about open redirect vulnerability: issue #19577 doesn't exist

Added by Mischa The Evil 12 months ago

[ Desperados ] wrote:

about open redirect vulnerability: issue #19577 doesn't exist

The issue really exists but is kept private. See also Why issue Defect #19577: Open redirect vulnerability is n.... HTH.