We are happy to announce that the new patch releases for CKAN 2.10.x and 2.9.x are now available to download and install.
These patch releases are particularly important to apply as they address a vulnerability in the resource id validation (CVE-2023-32321
), so users should upgrade as soon as possible to the latest patch release
for the CKAN version they are using.
Patch release upgrades are very straight-forward and do not contain any backwards incompatible changes or involve any change in the
database or Solr schema.
Please refer to the CHANGELOG file to see what's included:
You can find more details in the announcement post: