Page 1 of 1

[SECURITY] Release of OMERO and Bio-Formats 5.0.6

PostPosted: Mon Nov 10, 2014 10:54 am
by hflynn
Two security vulnerabilities have been discovered in versions of OMERO up to and including 5.0.5. System administrators should review the "Security Vulnerabilities" pages on the OME website. We do not consider either 2014-SV3 CSRF or 2014-SV4 POODLE to be critical vulnerabilities due to the difficulty of exploiting them. However, we do highly recommend all installations be upgraded.

The new version is available from the 5.0.6 downloads page.

For information on the upgrade from 4.4.x or 5.0.x to 5.0.6, see the OMERO5 instructions.

Bio-Formats 5.0.6 is also being released, although not due to a security vulnerability. Bug fixes include:

  • Pixel sign for DICOM images
  • Image dimensions for Zeiss CZI and Nikon ND2
  • Support for Leica LIF files produced by LAS AF 4.0 and later

The new version is available from the 5.0.6 download page.

Note that OpenJDK8 is not yet supported by OMERO or Bio-Formats.


Kind regards,
The OME team