If you would like to report an issue you believe is security related, please open a new JIRA Issue. Be sure to set the following attributes:
Alternately, you may notify comanage@sphericalcowgroup.com. Do not report issues via the mailing lists or Slack channels, as those are considered public. |
In general, you should always upgrade to the latest version of COmanage as soon as practical, upgrading a QA or test server first. The further behind you fall, the harder it will probably be to upgrade if a highly critical security advisory is released.
Advisory | Affected Releases | Severity | Exposure |
---|---|---|---|
2020-05-29 | Develop, commit 242d43daf6 and earlier | Low or Medium | Low |
2023-10-03b | 1.0.0 through 1.1.1 | Very High | Low |