Hi Jacques, Presently I am using 18.12.05. All applications are set. I wish not to install 18.12.06 afresh and new. I am thinking of applying patch to upgrade from 18.12.05 to 18.12.06.
Please let us know how to apply patches correctly with patch files. regards Avijit On Fri, Sep 2, 2022 at 12:04 PM Jacques Le Roux <jler...@apache.org> wrote: > Severity: > High > > Vendor: > The Apache Software Foundation > > Versions Affected: > OFBiz versions prior to 18.12.06 > > Description: > The Birt viewer version 4.5.0 has a security issue that allows this > exploit. > We waited long for https://github.com/eclipse/birt/issues/625 > to resolve but eventually decided to release OFBiz 18.12.06 without > the Birt component > > Mitigation: > Upgrade to at least 18.12.06 > or apply patches at https://issues.apache.org/jira/browse/OFBIZ-... > > Credit: > npodoty...@ptsecurity.com > > References: > http://ofbiz.apache.org/download.html#vulnerabilities > >
