ERP 2.50:Cloud Appliance - Release Notes

Contents 1 Introduction 2 Download 3 Changelog 3.1 2.50-21-3 3.2 2.50-19-13 3.3 2.50-19-11 3.4 2.50-19-9 3.5 2.50-19-9 3.6 2.50-19-8 3.7 2.50-19-3 3.8 2.50-19-1 3.9 2.50-17-4 3.10 2.50-17-3 3.11 2.50-17-1 3.12 2.50-16-18 3.13 2.50-16-15 3.14 2.50-16-14 3.15 2.50-16-12 3.16 2.50-16-10 3.17 2.50-16-9 3.18 2.50-16-7 3.19 2.50-16-5 3.20 2.50-16-4 3.21 2.50-16-2 3.22 2.50-14-1 3.23 2.50-13-9 3.24 2.50-13-8 3.25 2.50-13-7 3.26 2.50-13-4 3.27 2.50-13-2 3.28 2.50-12-3 3.29 2.50-12-1 3.30 2.50-9-23 3.31 2.50-9-22 3.32 2.50-9-21 3.33 2.50-9-19 3.34 2.50-9-18 3.35 2.50-9-16

Introduction

The Openbravo ERP Professional Subscription can be run mainly in 3 different modes:

• From sources: build the ERP from source code for maximum flexibility and to adjust it to any infrastructure.
• Ubuntu: using Ubuntu Linux as the underlying operating system plus the official Openbravo ERP Ubuntu package.
• Cloud Appliance Stack: the official software Appliance (JeOS) customized and optimized for Openbravo ERP. Powered by a customized rPath Linux.

This page collects the release notes of all the Cloud Appliance Stack. Note it doesn't contain the ERP release notes, but only for the underlying Linux operating system's package updates. If you are looking for the ERP release notes, check this page instead.

Download

The Cloud Appliance Stack can be downloaded from the Partner Restricted Area. Check the installation guide for detailed instructions.

Changelog

2.50-21-3

• sun-jdk: Updated to 1.6.0_25. Improved performance and stability. Changelog
• mercurial: Updated to 1.8.3. Maintenance fixes. Changelog

2.50-19-13

• tomcat: Use the UTF-8 character encoding to decode the URI bytes (URLs). This fixes an issue with selectors. Issue 16055
• mercurial: Updated to 1.8. Changelog

2.50-19-11

• sun-jdk: Updated to 1.6.0_24. This release contains fixes for security vulnerabilities related to the floating point number parser. Changelog
• tomcat: Updated to 6.0.32. Several maintenance fixes (18). Changelog

2.50-19-9

• httpd: Serve the application/json content gzip'ed to improve the performance.
• postgresql: Updated to 8.3.14. Several maintenance fixes. Changelog
• mercurial: Updated to 1.7.5. Maintenance fixes. Changelog
• VMware appliance: Updated the VMware Tools (open-vm-tools) to version 2010.12.19.

2.50-19-9

• httpd: Serve the application/json content gzip'ed to improve the performance.
• postgresql: Updated to 8.3.14. Several maintenance fixes. Changelog
• mercurial: Updated to 1.7.5. Maintenance fixes. Changelog
• VMware appliance: Updated the VMware Tools (open-vm-tools) to version 2010.12.19.

2.50-19-8

• kernel: Updated to 2.6.32, supporting newer hardware.

2.50-19-3

• tomcat: Updated to version 6.0.30. Several maintenance fixes (95). Changelog

2.50-19-1

• sun-jdk: Updated to version 1.6.0_23. Improved performance and stability. Changelog
• postgresql: Updated to version 8.3.13. Several maintenance fixes (23). Changelog
• psql: set the default PAGER to "less" for the openbravo system user.
• lsof: New package added to the appliance, useful for support activities.

2.50-17-4

• tomcat: fix a race condition between the Tomcat init script and the Tomcat restart provided by the Openbravo Module Management Console.

2.50-17-3

• mercurial: Updated to version 1.7.2. Changelog

2.50-17-1

• mercurial: Updated to version 1.7.1. Changelog
• cipo: Fixed a vulnerability found in the "rmt" client functionality in GNU cpio. Changelog
• tar: Fixed a vulnerability found in the "rmt" client functionality in GNU tar. Changelog
• curl: Fixed issue CVE-2010-0734
• lftp: New package added to the appliance to support file sharing
• krb5: Fixed two vulnerabilities CVE-2010-0629, CVE-2010-1321
• samba: Two flaws have been fixed CVE-2010-2063, CVE-2010-3069
• bzip2: Fixed vulnerability to an integer overflow in the BZ2_decompress function. CVE-2010-0405
• perl: Fixed two vulnerabilities in perl's Safe module. CVE-2010-1168, CVE-2010-1447
• kernel: Fixed issue CVE-2010-3081

2.50-16-18

• mod_jk: Updated to 1.2.31. Bug fix release. Changelog

2.50-16-15

• sun_jdk: Updated to 1.6.0_22. Includes fix for security vulnerabilities. Changelog

2.50-16-14

• mercurial: Updated to 1.6.4. Changelog
• postgresql: Updated to version 8.3.12. Includes a fix for security vulnerability CVE-2010-3433. Changelog

2.50-16-12

• mercurial: Updated to 1.6.3. Changelog

2.50-16-10

• mercurial: Updated to 1.6.2. Changelog

2.50-16-9

• tomcat: Updated to 6.0.29. Added a new option to the SSI Servlet and SSI Filter to allow the disabling of the exec command. Changelog

2.50-16-7

• rapa: Fixed the URL pointing to the Professional Subscription Manual.
• sun_jdk: Updated to 1.6.0_21, Povides a fix that lets drag-and-drop operations succeed for signed applications or applications with the accessClipboard permission granted. Changelog

2.50-16-5

• tomcat, httpd: Secure the Tomcat Manager to allow connections from the ERP only.
• conary: Updated to 2.1.18. Details
• mercurial:: Updated to 1.5.4. Changelog

2.50-16-4

• openssl: Fixed vulnerability issues (that could result in disclosure of sensitive information). Details
• postgresql: Updated to version 8.3.11. Fixed possible crash if a cache reset message is received during rebuild of a relcache entry. Changelog
• httpd: Add robots.txt file to disable web crawlers' indexing.
• mercurial: Updated to version 1.5.3. Changelog

2.50-16-2

• tomcat: Enhance the init script to better handle potential forced shutdowns (e.g. power outages).
• Notifications: Fix a regression introduced in 2.50-14-1 that prevented the e-mail notifications from working.
• mercurial: Updated to version 1.5.2. Changelog
• openssl: Fixed several vulnerability issues (like man-in-the-middle attack weaknesses in the TLS protocol). CVE-2009-3245, CVE-2009-3555, CVE-2010-0433
• kernel: Fixed two vulnerability issues (like allows attackers to cause a denial of service). CVE-2010-1087, CVE-2009-3288

2.50-14-1

• ntp: Fixes a security vulnerability, preventing remote attackers to cause a denial of service (CPU and bandwidth consumption) by sending spoofed packets. CVE-2009-3563
• conary: Updated to 2.1.15. Changelog

2.50-13-9

• sun_jdk: Updated to 1.6.0_20, which fixes security vulnerabilities related to CVE-2010-0886. Changelog
• mercurial: Updated to version 1.5.1. Changelog
• rapa: Updated to version 3.2.5. Changelog

2.50-13-8

• Backups: Prevent a potential race condition between the scheduled backups and the tmpwatch cron job that could potentially lead to a loss of crucial file system files.
• tomcat: Updated to 6.0.26. Added memory leak detection mechanism. Changelog
• postgresql: Updated to 8.3.10. This release provides a workaround for some third-party SSL libraries, as well as multiple fixes for minor uptime and data integrity issues. Changelog

2.50-13-7

• mercurial: Updated to 1.5. Changelog
• mod_jk: Updated to 1.2.30. Changelog
• openssh: Updated to 5.3p1. Changelog

2.50-13-4

• tomcat-native: Updated to latest version 1.1.20 changelog

2.50-13-2

• Backups: Fixed an issue in the backup restore process, so that now it completely replaces the /opt/OpenbravoERP source tree instead of overwriting it.
• Notifications: Add support for a local e-mail relay, allowing to specify localhost in the notifications configuration.
• rapa: Updated to 3.2.3, maintenance release.

2.50-12-3

• mercurial: Updated to 1.4.3. Changelog
• tomcat: Updated to 6.0.24. Changelog

2.50-12-1

• sun-jdk: Updated to 1.6.0_18. Changelog
• tomcat-native: Updated to 1.1.19. Changelog

2.50-9-23

• openssl: Fixed vulnerability issue. CVE-2009-4355

2.50-9-22

• mercurial: update to 1.4.2. Changelog
• libcap update to 2.17.
• conary update to 2.1.1.

2.50-9-21

• postgresql update to 8.3.9 for an SSL authentication issue, and a privilege escalation issue with expression indexes. Changelog
• rapa update to 3.2.2 maintenance release Changelog
• kernel update to 2.6.29.6-3-1, Previous kernel versions in the 2.6.29 series are vulnerable to a remote Denial-of-Service attack (NULL pointer rereference and hang) via long IP packets. This has been fixed. CVE-2009-1298
• hwdata update to 0.225-1-1, support for some new AHCI SATA controllers RPL-3154

2.50-9-19

• Add the Proxy Configuration step to the initial web administration console setup. This is necessary for those who configuring the appliance for the first time require a proxy server to connect to the Internet, and therefore required to enter a valid entitlement key.

2.50-9-18

• New boot loader splash image with the new appliance name.
• mercurial: update to 1.4.1. Changelog

2.50-9-16

• sun-jdk: update to 1.6.0_17. Fixes multiple vulnerabilities: CVE-2009-3884, CVE-2009-3886
• httpd, mod_ssl: previous versions of httpd and mod_ssl are vulnerable to a man-in-the-middle attack during TLS session renegotiation. This vulnerability has been addressed in this update. Additionally, a denial of service vulnerability and an access restriction bypass in mod_proxy_ftp are resolved in this update: CVE-2009-3555, CVE-2009-3094, CVE-2009-3095, CVE-2009-1195, CVE-2009-1890
• tomcat-native: update to 1.1.18. Fix a SSL-Man-In-The-Middle attack: CVE-2009-3555. Changelog
• mercurial: update to 1.4. Changelog
• Change the appliance name to Openbravo ERP Cloud Appliance
• Minor updates in other packages: apr-util, samba-client.

Category: Professional Edition ERP