Last edited 10 hours ago
by Margit Link-Rodrigue

Setup:Release History and Security:Security Advisories: Difference between pages

(Difference between pages)
VisualWikitext
No edit summary
 
No edit summary
 
Line 1: Line 1:
{{Featurepage|featured=false|featuredesc=Latest patch release: {{ReleaseLatest}}|featurestart=06/18/2021}}
{{Messagebox|boxtype=note|Note text=Support für BlueSpice 3.x ends on March 15, 2023.}}   
BlueSpice  versioning follows the ''Semantic Versioning Specification'' from [https://semver.org/lang/de/ semver.org].   
{| class="wikitable" style="width:100%;"
{| class="wikitable" style="width:100%;"
|+
!Release name
!Major Release
!Release date
!Version
!Title
!Published
!References
!Details
!Summary
!Type
|-
|-
| rowspan="5" |'''BlueSpice 4'''
|[[Security:Security Advisories/BSSA-2022-01|BSSA-2022-01]]
|4.1.3
|2022-01-31
|April 26, 2022
|XSS attack vector in Search Center
|[[Setup:Release Notes#4.1.3|Release notes]]
|CVE pending
|Patch release
|JavaScript in search field is reflected back to the browser.
Security patch!
|-
|-
|4.1.2
|[[Security:Security Advisories/BSSA-2022-02|BSSA-2022-02]]
|March 17, 2022
|2022-04-25
|[[Setup:Release Notes#4.1.2|Release notes]]
|XSS attack vector on regular pages
|Patch release
|CVE pending
|-
|Arbitrary HTML injection through the 'title' parameter
|4.1.1
|Feb 10, 2022
|[[Setup:Release Notes#4.1.1|Release notes]]
|Patch release
|-
|4.1.0
|Jan 19, 2022
|[[BlueSpice 4.1|Description]],
[[Setup:Release Notes#4.1.0|Release notes]]
|Combined major/minor release
|-
|4.1.0-RC2
|(Release candidate: Dec 15, 2021)
|[[BlueSpice 4.1|Description]]
|Combined major/minor release
|-
!'''BlueSpice 1-3'''
| colspan="4" |[[Setup:Release History/BlueSpice 1-3|Release history]]
|}
|}

Revision as of 09:20, 26 April 2022

Release name Release date Title References Summary
BSSA-2022-01 2022-01-31 XSS attack vector in Search Center CVE pending JavaScript in search field is reflected back to the browser.
BSSA-2022-02 2022-04-25 XSS attack vector on regular pages CVE pending Arbitrary HTML injection through the 'title' parameter


To submit feedback about this documentation, visit our community forum.

Retrieved from "https://en.wiki.bluespice.com/w/index.php?title=Setup:Release_History&oldid=3330"
No categories assignedEdit

Discussions