Friday, June 30, 2017

Security Release: JasperReports 6.4.0


TIBCO has published two security advisories reporting multiple server cross-site vulnerabilities (CVE-2017-5528) and library Information disclosure vulnerability (CVE-2017-5529) in multiple versions of JasperReports.

It is strongly recommended to update your JasperReports Server to the latest version, JasperReports 6.4.0. You can read our documentation to learn how to upgrade JasperReports Server to keep it secure. If you are using the Bitnami JasperReports Docker container image, please follow the documentation in our GitHub repository.

If you have further questions about Bitnami JasperReports or this security issue, please post to our community forum, and we will be happy to help you.