Crowd 4.4 Upgrade Notes

Here are some important notes on upgrading to Crowd 4.4. To learn about new features, see the release notes.

 アップグレード ノート

次の重要な情報をご確認ください。

Crowd 4.4.4: Critical Security Misconfiguration Vulnerability - CVE-2022-43782

CVE-2022-43782 was addressed in Crowd 4.4.4. No additional actions are needed after the upgrade. However, it is recommended to review Remote Addresses of crowd  application (Crowd console) and remove those addresses if no longer needed.

Applications are no longer allowed to change the email addresses of Crowd users

Crowd 4.4 requires that new email addresses are verified by their users. To avoid working around this requirement, Crowd will reject any requests for changing email addresses coming from connected applications.

This also means that admins will no longer be able to change email addresses of users through REST API.

 サポート対象プラットフォーム

We're ending support for the following platforms:

  • (error) PostreSQL 9.6
最終更新日 2022 年 11 月 18 日

この内容はお役に立ちましたか?

はい
いいえ
この記事についてのフィードバックを送信する
Powered by Confluence and Scroll Viewport.