Introducing Reference Application 2.3.1
Taking up from Release 2.3.1, we are here to introduce 2.3.1 to the community which was been released in response to address certain security vulnerabilities which would allow one to remotely execute arbitrary code via XML deserialization and spring's expression language support feature. See below for the changes.
Who is this release meant for?
Anyone running OpenMRS Reference Application
It is highly recommended that everyone running the reference application upgrades to this version, if you're only using the reference application modules, make sure you download the latest zip file of the 2.3.1 modules here
A huge thanks to the people that contributed code to this release, not to mention all the people that contributed in countless other ways to support this release and be a great part of the shaping it and the whole infrastructure team!
We welcome any user to download OpenMRS 2.3.1 and try it out, give us feedback.
Download OpenMRS 2.3.1
- OpenMRS platform has been upgraded to version 1.11.5
- Reporting module has been upgraded to version 0.9.8.1
- Metadata sharing module has been upgraded to version 1.1.10
- Serialization.xstream module has been upgraded to version 0.2.10
Download OpenMRS 2.3 here: http://openmrs.org/download