ERP/2.50/Cloud Appliance - Release Notes

Introduction

The Openbravo ERP Professional Subscription can be run mainly in 3 different modes:

• From sources: build the ERP from source code for maximum flexibility and to adjust it to any infrastructure.
• Ubuntu: using Ubuntu Linux as the underlying operating system plus the official Openbravo ERP Ubuntu package.
• Cloud Appliance Stack: the official software Appliance (JeOS) customized and optimized for Openbravo ERP. Powered by a customized rPath Linux.

This page collects the release notes of all the Cloud Appliance Stack. Note it doesn't contain the ERP release notes, but only for the underlying Linux operating system's package updates. If you are looking for the ERP release notes, check this page instead.

Download

The Cloud Appliance Stack can be downloaded from the Partner Restricted Area. Check the installation guide for detailed instructions.

Changelog

2.50-13-7

• mercurial: Updated to 1.5. Changelog
• mod_jk: Updated to 1.2.30. Changelog
• openssh: Uptated to 5.3p1. Changelog

2.50-13-4

• tomcat-native: Updated to latest version 1.1.20 changelog

2.50-13-2

• Backups: Fixed an issue in the backup restore process, so that now it completely replaces the /opt/OpenbravoERP source tree instead of overwriting it.
• Notifications: Add support for a local e-mail relay, allowing to specify localhost in the notifications configuration.
• rapa: Updated to 3.2.3, maintenance release.

2.50-12-3

• mercurial: Updated to 1.4.3. Changelog
• tomcat: Updated to 6.0.24. Changelog

2.50-12-1

• sun-jdk: Updated to 1.6.0_18. Changelog
• tomcat-native: Updated to 1.1.19. Changelog

2.50-9-23

• openssl: Fixed vulnerability issue. CVE-2009-4355

2.50-9-22

• mercurial: update to 1.4.2. Changelog
• libcap updated to 2.17.
• conary updated to 2.1.1.

2.50-9-21

• postgresql updated to 8.3.9 for an SSL authentication issue, and a privilege escalation issue with expression indexes. Changelog
• rapa updated to 3.2.2 maintenance release Changelog
• kernel updated to 2.6.29.6-3-1, Previous kernel versions in the 2.6.29 series are vulnerable to a remote Denial-of-Service attack (NULL pointer rereference and hang) via long IP packets. This has been fixed. CVE-2009-1298
• hwdata update to 0.225-1-1, support for some new AHCI SATA controllers RPL-3154

2.50-9-19

• Add the Proxy Configuration step to the initial web administration console setup. This is necessary for those who configuring the appliance for the first time require a proxy server to connect to the Internet, and therefore required to enter a valid entitlement key.

2.50-9-18

• New boot loader splash image with the new appliance name.
• mercurial: update to 1.4.1. Changelog

2.50-9-16

• sun-jdk: update to 1.6.0_17. Fixes multiple vulnerabilities: CVE-2009-3884, CVE-2009-3886
• httpd, mod_ssl: previous versions of httpd and mod_ssl are vulnerable to a man-in-the-middle attack during TLS session renegotiation. This vulnerability has been addressed in this update. Additionally, a denial of service vulnerability and an access restriction bypass in mod_proxy_ftp are resolved in this update: CVE-2009-3555, CVE-2009-3094, CVE-2009-3095, CVE-2009-1195, CVE-2009-1890
• tomcat-native: update to 1.1.18. Fix a SSL-Man-In-The-Middle attack: CVE-2009-3555. Changelog
• mercurial: update to 1.4. Changelog
• Change the appliance name to Openbravo ERP Cloud Appliance
• Minor updates in other packages: apr-util, samba-client.