Blog OpenMage

Dots

CVE-2020-15244 and New Release 19.4.8 and 20.0.4

category: Updates
date: 20 Oct 2020
author: colinmollenhour

CVE-2020-15244 is our second OpenMage CVE and our first CVE that is wholly independent from Adobe!

This vulnerability was disclosed to us privately from a community member via our HackerOne program and patched in versions 19.4.8 and 20.0.4. Please update to one of these version to receive the patch.

A big thanks to Luke Rogers for submitting the report!

Category
Last Post
Shortcuts
Community
OpenMage LTS
Magento and all related logos are either registered trademarks or trademarks of Adobe Inc. in the United States and/or other Countries. Use of such trademarks is under license and does not imply any affiliation, endorsement, or sponsorship by Adobe Inc.
Partners
Changelog
Versions
Devdocs
Facebook
LinkedIn
Discord
Twitter
GitHub
Mastodon
Ⓒ 2020, OpenMage LTS is maintained by OpenMage