Project

General

Profile

Redmine 3.1.1, 3.0.5 and 2.6.7 released

Added by Jean-Philippe Lang over 9 years ago

Redmine 3.1.1 is a maintenance release that includes 28 changes (Changelog). 3.0.5 and 2.6.7 are maintenance releases for 3.0.x and 2.6.x users.

Security: these 3 releases all include a fix for a security vulnerability (open redirect vulnerability). Users are encouraged to update to these fixed versions.


Comments

Added by Deoren Moor over 9 years ago

Thanks to the devs for all of their work on this. Happy upgrades everyone!

Added by [ Desperados ] about 9 years ago

about open redirect vulnerability: issue #19577 doesn't exist

Added by Mischa The Evil about 9 years ago

[ Desperados ] wrote:

about open redirect vulnerability: issue #19577 doesn't exist

The issue really exists but is kept private. See also Why issue Defect #19577: Open redirect vulnerability is n.... HTH.