The Evergreen Community announces the release of Evergreen 3.8.3, 3.9.2, and 3.10.1. These releases are available from the downloads page.
These releases include various bugfixes as well as fixes for two security issues. One security fix adds protections for denial of service caused by excessive catalog searches, while the other adds validation for a URL parameter used in the public catalog.
It is recommended that all Evergreen sites upgrade as soon as possible.
All of these new releases contain additional bug fixes unrelated to the security issue. For more information on the changes in these releases, please consult their release notes: