In the last week we disclosed a JEXL vulnerability, did more bug fixing, updated Nephron and flow handling, worked on a new configuration API, did more JDK 11 updates, more documentation fixups, CDP/LLDP searching, QoS/ToS improvements, OpenBMP migration, and more.
No one wants to have a security vulnerability, particularly with network management software, where the consequences could be serious. Find out how OpenNMS deals with reported security issues when they arise.
Release 26.0.1 is an off-schedule release to fix a vulnerability in ActiveMQ and the Minion.
Release 2019.1.6 is an off-schedule release to fix a vulnerability in ActiveMQ and the Minion.
Release 2018.1.18 is an off-schedule release to fix a vulnerability in ActiveMQ and the Minion.
Release 2019.1.5 is the sixth release in the Meridian 2019 series. It fixes a few more security issues, as well as a number of other bugs and a couple of enhancements. Hat tip to Johannes Moritz for the security report. The codename for 2019.1.5 is Saturn. Bug SNMP Remove from definitions fails for definitions with profile [...]
Release 2018.1.17 is a small update to 2018.1.16 that fixes another security issue that affects most current OpenNMS releases. Hat tip to Johannes Moritz for reporting this. The codename for 2018.1.17 is Pandemic. Bug Security issue disclosures, 31 Jan 2020 (Issue NMS-12513) Drools working memory facts are not restored properly on engine reload (Issue NMS-12586) Confd [...]
Release 2017.1.22 is a small update to 2017.1.21 that fixes another security issue that affects most current OpenNMS releases. Hat tip to Johannes Moritz for reporting this. The codename for 2017.1.22 is meridianu(s) Budense. Bug Security issue disclosures, 31 Jan 2020 (Issue NMS-12513) Confd download fails silently on Docker install (Issue NMS-12642) Enhancement Backport CircleCI pipeline [...]