Request Demo

5.9.3

  • February 1, 2023

Security

  • Fixed possible timing attack when using insecure ticket authentication (Thanks to Kevin Joensen of CSIS for reporting this issue) (CVE-2023-24035) -SAW
  • Fixed open redirect in Twilio component (Thanks Kevin Joensen and CSIS) (CVE-2023-24036) -SAW
  • Improve authentication token and salt generation (Thanks Kevin Joensen and CSIS) (CVE-2023-24037) -SAW
  • Update default php resource values [GL:XI#28] – SNS

Updated

  • Deprecate Debian 9 and Ubuntu 16.04 due to end-of-life [GL:XI#27] – SNS

Fixed

  • Fixed bad text wrapping in Availability Report graphs [GL:XI#73] -DA