Thursday, November 9, 2017

Security Release: CouchDB 2.1.1

The CouchDB project has just announced the immediate availability of a new version that fixes multiple critical security vulnerabilities.

The detailed description of those security vulnerabilities will not be published until November 14th, but updating the server is mandatory. It is highly recommended that you update your CouchDB server to 2.1.1.

Apart from those vulnerabilities, the new version includes several improvements. More information about these improvements can be found in the official announcement.

For new application deployments, including the Bitnami Launchpad, we have released CouchDB 2.1.1 installers, virtual machines and cloud images that include the security fixes to address these vulnerabilities. Users launching Bitnami CouchDB via a cloud marketplace are advised to select version 2.1.1, once it is published.

If you have further questions about this security issue or how to update your Bitnami CouchDB, please post to our community forum. Our support team will be happy to help you!