[ome-devel] Security release of OMERO & Bio-Formats 5.0.6

Helen Flynn h.flynn at dundee.ac.uk
Tue Nov 11 17:37:41 GMT 2014


Dear All,

Two security vulnerabilities have been discovered in versions of OMERO up to and including 5.0.5. System administrators should review the "Security Vulnerabilities" pages on the OME website:

http://www.openmicroscopy.org/site/products/omero/secvuln

We do not consider either 2014-SV3 CSRF or 2014-SV4 POODLE to be critical vulnerabilities due to the difficulty of exploiting them. However, we do highly recommend all installations be upgraded.

The new version is available from the 5.0.6 downloads page - http://downloads.openmicroscopy.org/omero/5.0.6/

For information on the upgrade from 4.4.x or 5.0.x to 5.0.6, see the OMERO5 instructions - http://www.openmicroscopy.org/site/support/omero5/sysadmins/server-upgrade.html


Bio-Formats 5.0.6 is also being released, although not due to a security vulnerability. Bug fixes include:

  *   Pixel sign for DICOM images
  *   Image dimensions for Zeiss CZI and Nikon ND2
  *   Support for Leica LIF files produced by LAS AF 4.0 and later

The new version is available from the 5.0.6 download page - http://downloads.openmicroscopy.org/bio-formats/5.0.6/


Note that OpenJDK8 is not yet supported by OMERO or Bio-Formats.


Kind regards,
The OME team


Dr Helen Flynn
OME Technical Writer
Centre for Gene Regulation & Expression
Open Microscopy Environment
University of Dundee
http://openmicroscopy.org<http://openmicroscopy.org/>


The University of Dundee is a registered Scottish Charity, No: SC015096
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openmicroscopy.org.uk/pipermail/ome-devel/attachments/20141111/c9904da2/attachment.html>


More information about the ome-devel mailing list