https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309969#M263099 <HTML><HEAD></HEAD><BODY><SPAN>Alfresco Community Edition 4.2.f is now available for download:</SPAN><BR /><BR /><A href="http://www.alfresco.com/products/community" rel="nofollow noopener noreferrer">http://www.alfresco.com/products/community</A><BR /><BR /><SPAN>This release only contains a couple of changes from 4.2.e. The changes are fixes for important security vulnerabilities. We highly recommend that all Community Edition users update.</SPAN><BR /><BR /><SPAN>The security concerns are documented in Security Advisory 6:</SPAN><BR /><BR /><A href="http://wiki.alfresco.com/wiki/SA-6" rel="nofollow noopener noreferrer">http://wiki.alfresco.com/wiki/SA-6</A><BR /><BR /><SPAN>Customers should have already been notified of these vulnerabilities. Patched versions of Alfresco Enterprise are available through the support portal.</SPAN><BR /><BR /><SPAN>More details on the release are in the wiki here:</SPAN><BR /><BR /><A href="http://wiki.alfresco.com/wiki/Community_file_list_4.2.f" rel="nofollow noopener noreferrer">http://wiki.alfresco.com/wiki/Community_file_list_4.2.f</A><BR /><BR /><SPAN>If you find something you think is a bug, check the list of known issues first before reporting it in the forums or in JIRA. If you have questions, comments, or general feedback on the release, please create it as a new topic in the appropriate forum.</SPAN></BODY></HTML> Thu, 13 Mar 2014 20:36:47 GMT resplin 2014-03-13T20:36:47Z https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309969#M263099 Alfresco Community Edition 4.2.f is now available for download:http://www.alfresco.com/products/communityThis release only contains a couple of changes from 4.2.e. The changes are fixes for important security vulnerabilities. We highly recommend that all Community Edition users update.The security c Thu, 13 Mar 2014 20:36:47 GMT https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309969#M263099 resplin 2014-03-13T20:36:47Z https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309970#M263100 <HTML><HEAD></HEAD><BODY><SPAN>Are the security fixes also merged to public subversion HEAD?</SPAN></BODY></HTML> Fri, 14 Mar 2014 11:22:42 GMT https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309970#M263100 loftux 2014-03-14T11:22:42Z https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309971#M263101 <HTML><HEAD></HEAD><BODY><SPAN>I'm told those fixes were recently merged to head, so they should be available now.</SPAN></BODY></HTML> Fri, 14 Mar 2014 16:13:23 GMT https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309971#M263101 resplin 2014-03-14T16:13:23Z https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309972#M263102 <HTML><HEAD></HEAD><BODY><SPAN>Hello everyone.</SPAN><BR /><BR /><SPAN>I know that exists a vulnerability in Alfresco Enterprise 4.1.6.13 (</SPAN><A href="http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2939" rel="nofollow noopener noreferrer">http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-2939</A><SPAN>) and I would to know if this vulnerability affects to Community version.</SPAN><BR /><BR /><SPAN>I write this post in this thread because the Community 4.2.f version solves some security problems, but I don't know if this version would also solve the problems describes in the Enterprise version.</SPAN><BR /><BR /><SPAN>Thank you very much.</SPAN><BR /><BR /><SPAN>Kind Regards,</SPAN><BR /><SPAN>Miguel.</SPAN></BODY></HTML> Mon, 30 Jun 2014 06:17:18 GMT https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309972#M263102 m_angel82 2014-06-30T06:17:18Z https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309973#M263103 <HTML><HEAD></HEAD><BODY><SPAN>Yes it's the same issue.&nbsp;&nbsp; It's fixed everywhere.</SPAN></BODY></HTML> Mon, 30 Jun 2014 09:00:39 GMT https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309973#M263103 mrogers 2014-06-30T09:00:39Z https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309974#M263104 <HTML><HEAD></HEAD><BODY><SPAN>SEC Consult Vulnerability Lab released PoC's for another Alfresco Community (4.2.f) exploits: </SPAN><A href="http://www.securityfocus.com/archive/1/532796" rel="nofollow noopener noreferrer">http://www.securityfocus.com/archive/1/532796</A><BR /></BODY></HTML> Sat, 02 Aug 2014 06:46:19 GMT https://connect.hyland.com/t5/alfresco-archive/new-security-advisory-and-alfresco-community-edition-4-2-f/m-p/309974#M263104 louise 2014-08-02T06:46:19Z