Evergreen ILS

Open Source Library Software

Galen Charlton

Evergreen security release: 3.14.12, 3.15.12, 3.16.6, 3.17-beta2

The Evergreen Project has issued the following security releases;

  • 3.14.12
  • 3.15.12
  • 3.16.6
  • 3.17-beta2

These fix vulnerabilities that allow remote exfiltration of the contents of the database and the remote execution of arbitrary SQL and stored procedures in the Evergreen database.

These releases are available on the downloads page.

We strongly recommend immediate installation of this security release.

The two security bugs fixed in this release are:

These bugs will be made publicly visible over the next few days.

If you are running a version of Evergreen earlier than 3.14, please consult with your service provider or review the fixes in Git to update your system.

We would like to thank the individual who reported bug 2147196.

Evergreen 3.17-beta available

The beta release of Evergreen 3.17 is now available. Evergreen 3.17 is a feature release that includes:

  • Improvements to the Holdings Editor, including a new version of “working items” support and restoring the ability to unset fields
  • Improvements to the Patron Summary display, including displaying user preferences, number of overdue items across the patron’s family group, and more visibly displaying the privacy waiver status
  • Library Groups can now be taken into account when configuring circulation and hold policies
  • Circulation and hold policies can now be cloned
  • Email receipts can now be sent from the Items Out, Renew Items, and Checkin interfaces
  • Patrons can now set a hold expiration date when placing holds through the public catalog
  • The ability to populate Item Buckets by importing from CSV files
  • New methods for allowing patrons to set fine-grained opt-ins to notifications
  • Many grids in the staff interface now have case-insensitive filtering
  • Chilifresh is now supported as a cover image provider
  • Stackmap integrations can now be more easily enabled in the public catalog
  • Support for installation on Debian 13 “Trixie”
  • Support for PostgreSQL 18
  • Various accessibility improvements

The beta release is available for download. We strongly encourage Evergreen users and developers to thoroughly test the beta release. General release is scheduled for April 29, 2026.

Evergreen 3.15.11 and 3.16.5 released

The Evergreen release team is pleased to announce that point releases for 3.15.11 and 3.16.5 are available.

These releases contain several staff interface, circulation, acquisitions, and documentation improvements.

Files and release notes are available on the Downloads page: https://evergreen-ils.org/egdownloads/

Thanks to the March release team: Michele Morgan (NOBLE), Gina Monti (Bibliomation), Martha Driscoll (NOBLE), and Galen Charlton (Equinox) as well as the individuals and organizations who contributed and sponsored the improvements released today.