January 2022 Releases – Horizon 29.0.5, Meridians 2021.1.10, 2020.1.18, 2019.1.29
In January, we released updates to all OpenNMS Meridian versions under active support, as well as Horizon 29.
Security Releases – Horizon 29.0.4, Meridian 2021.1.9, 2020.1.17, 2019.1.28
(deep breath) Today we released off-cycle updates to all OpenNMS Meridian versions under active support, as well as Horizon 29, to address additional Log4j2 "Log4Shell" vulnerabilities.
Security Releases – Horizon 29.0.3, Meridians 2021.1.8, 2020.1.16, 2019.1.27
Today we released updates to all OpenNMS Meridian versions under active support, as well as Horizon 29, to address the Log4j2 "Log4Shell" vulnerability.
OpenNMS Products Affected by Apache Log4j Vulnerability CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105 (updated Dec. 20, 2021)
Updates The log4j.formatMsgNoLookups work-around is no longer recommended. We are evaluating CVE-2021-45105 and at this time do not believe our products are affected. December 14, 2021: Horizon 26.1.2 and earlier versions. December 16, 2021: CVE-2021-45046. [...]
December 2021 Releases – Horizon 29.0.2, Meridians 2021.1.7, 2020.1.15, 2019.1.26
In December, we released updates to all OpenNMS Meridian versions under active support, as well as Horizon 29.
OpenNMS Horizon 29.0.1 Released
Horizon 29.0.1 is a quick release outside of the normal schedule to address some bugs found in 29.0.0 mostly related to running as non-root, and Minion communication.