The Joomla! project has just released a new version that fixes three security vulnerabilities. This is a security release for the 3.x series and it only contains the security fixes, no other changes have been made. It is strongly suggested that you update your Joomla! website to the latest version. You can find more info about these issue at the Joomla! release news page. We have released Bitnami Joomla! 3.6.5 Docker image, cloud images, installers and virtual machines that fix these iss... Read more
December 20, 2016Version 4.7 of WordPress, named “Vaughan” in honor of legendary jazz vocalist Sarah “Sassy” Vaughan, is now available from Bitnami. If you are already using a Bitnami WordPress image, you can simply upgrade your version from your WordPress admin panel. Not familiar with Bitnami WordPress? In short, it is the easiest way to install your own WordPress instance. We've packaged WordPress as a self-contained and incredibly fast distribution that is simple to deploy. To get started with Bitnami ... Read more
December 10, 2016The GitLab project released a new update that contains an important security fix for a critical denial-of-service and data corruption vulnerability, and we strongly recommend that all affected GitLab installations be upgraded to the latest version immediately. We released new versions of Bitnami Gitlab 8.14.3 installers, virtual machines and cloud images that fix this security issue. Further details regarding the security issue are explained below: Denial-of-Service and Data Corruption V... Read more
December 6, 2016Bitnami has included Code Dx in the first wave of applications published to Microsoft’s Azure Government Cloud Marketplace. Code Dx provides comprehensive tools for software development professionals and quality assurance experts to test applications for vulnerabilities, pinpointing issues in the actual code. With the recent attention and focus on application security—along with the tools Code Dx provides to ensure software development compliance with standards found in regulations like the ... Read more
December 1, 2016Bitnami, one of the leading providers of open source software in the AWS Marketplace, is excited to announce two new offerings using Amazon Relational Database Service (RDS), Wordpress Multi-Tier with Amazon RDS for MariaDB and Redmine Multi-Tier with Amazon RDS for MariaDB. Wordpress, a popular Content Management System (CMS) and Redmine, a flexible and richly configurable project management platform, are excellent additions to any business’ needs in the cloud. Amazon Relational Database ... Read more
November 29, 2016Several new security vulnerabilities that affect some versions of MySQL and MariaDB were announced recently: We want to let you know that all the published Bitnami Stacks that include MySQL or MariaDB as the database server are not affected, since they are using non-affected versions of the component. CVE-2016-6663 The vulnerability can allow a local system user with access to the affected database in the context of a low-privileged account (CREATE/INSERT/SELECT grants) to escalate th... Read more
November 21, 2016The Drupal project released a new update that fixes several security vulnerabilities. We strongly recommend upgrading your existing Drupal 7 and 8 sites. Information regarding the additional changes is available in the official security advisory. In response to the new Drupal version, we have released the following: Bitnami Drupal 7 and 8 installers, virtual machines, and cloud images. Two notable issues include: 1. Confirmation forms allow external URLs to be injected (Moderately critical... Read more
November 18, 2016The Jenkins project hast just released a new update that fixes a zero-day vulnerability that allow unauthenticated remote code execution. It is considered critical as it allows to execute code to unprivileged users. We released new versions of Bitnami Jenkins 2.19.3 installers, virtual machines and cloud images that fix the security issue. More information about the issue can be found in the official blog post. Do you already have a Jenkins installation? You can follow our guide about h... Read more
November 18, 2016