New security updates available

by

The following versions needs to be updated immediately because of an authenticated PHP code injection vulnerability (CVE-2020-26124).

openmediavault 3.0.100

  • Add Debian security repository.
  • Disable jessie-backports repository.
  • Fix ‘Authenticated PHP Code Injection’ reported by Anastasios Stasinopoulos (@ancst) – Obrela Labs Team.

openmediavault 4.1.36

  • Fix ‘Authenticated PHP Code Injection’ reported by Anastasios Stasinopoulos (@ancst) – Obrela Labs Team.

openmediavault 5.5.12

  • Update locales.
  • Fix ‘Authenticated PHP Code Injection’ reported by Anastasios Stasinopoulos (@ancst) – Obrela Labs Team.
  • Issue #816: If you have assigned a comment to a user, you can’t delete the comment.
  • Issue #819: Dashboard on mobile not adjusting to 100% screen size.