Evergreen and OpenSRF Security Releases: Evergreen 3.10.5, 3.11.6, 3.12.4, 3.13.1; OpenSRF 3.2.5 and 3.3.1
The Evergreen Project announces security releases for Evergreen and OpenSRF. The Evergreen releases are: 3.10.5 3.11.6 3.12.4 3.13.1 The Evergreen releases include fixes for the following issues: Two reflected XSS (cross-site scripting) vulnerabilities that would permit allowing executing arbitrary JavaScript by the user’s web browser An insecure direct object reference (IDOR) vulnerability that allows for … Continue Reading about Evergreen and OpenSRF Security Releases: Evergreen 3.10.5, 3.11.6, 3.12.4, 3.13.1; OpenSRF 3.2.5 and 3.3.1 →
Evergreen Returns to ALA Annual Conference
The Evergreen community is hosting a session this weekend at the American Library Association Annual Conference & Exhibition in San Diego. The session, From User Group to Community: Software for Libraries by Libraries is scheduled for 2:30 to 3:30 p.m. PDT Saturday, June 29, at the Marriott Marquis in the Miramar Room. Kathy Lussier, Executive … Continue Reading about Evergreen Returns to ALA Annual Conference →
Evergreen and OpenSRF security releases during the week of June 24
The Evergreen community will release new versions of both OpenSRF and Evergreen during the week of June 24 to fix security vulnerabilities. Once they are released, all Evergreen sites are encouraged to upgrade immediately. These releases will be announced on the evergreen-general mailing list and the Evergreen blog once available. For more information about how security bugs … Continue Reading about Evergreen and OpenSRF security releases during the week of June 24 →