Groups

Opencast Security Notices

1–30 of 31

0 selected

12/29/24

ℹ Moving to GitHub

Hi everyone, as Opencast Project, we post any security issues on GitHub. New problems will no longer

unread,

ℹ Moving to GitHub

Hi everyone, as Opencast Project, we post any security issues on GitHub. New problems will no longer

12/29/24

2/26/24

FFmpeg < 6.1 affected by a security issue, and a memory leak

Hi all, The FFmpeg project recently released a security advisory relating to some code in FFmpeg 6.x,

unread,

FFmpeg < 6.1 affected by a security issue, and a memory leak

Hi all, The FFmpeg project recently released a security advisory relating to some code in FFmpeg 6.x,

2/26/24

12/13/21

Apache Log4j Remote Code Execution

Hi everyone, here comes a short notice about a remote code execution vulnerability in Apache Log4j2

unread,

Apache Log4j Remote Code Execution

Hi everyone, here comes a short notice about a remote code execution vulnerability in Apache Log4j2

12/13/21

6/15/21

Opencast vulnerable to billion laughs attack (XML bomb)

Hi everyone, here comes a short notice that the new releases of Opencast 9.6 contains a security fix.

unread,

Opencast vulnerable to billion laughs attack (XML bomb)

Hi everyone, here comes a short notice that the new releases of Opencast 9.6 contains a security fix.

6/15/21

2/17/21

Removing access may not effect published series

Hi everyone, here comes a short notice that the new releases of Opencast 9.2 contains a low severity

unread,

Removing access may not effect published series

Hi everyone, here comes a short notice that the new releases of Opencast 9.2 contains a low severity

2/17/21

12/8/20

Disabled Hostname Verification

Hi everyone, here comes a short notice that today's releases of Opencast 7.9 and 8.9 contain an

unread,

Disabled Hostname Verification

Hi everyone, here comes a short notice that today's releases of Opencast 7.9 and 8.9 contain an

12/8/20

1/29/20

Opencast 7.6 and 8.1 Security Releases

Hi everyone, I'm happy to announce that Opencast 7.6 and 8.1 have been released by their

unread,

Opencast 7.6 and 8.1 Security Releases

Hi everyone, I'm happy to announce that Opencast 7.6 and 8.1 have been released by their

1/29/20

8/2/19

Cutting is silently skipped

Hi everyone, Affected versions: Opencast 6.5, 7.0, 7.1 Fix Versions: Opencast 6.6, 7.2 Description: A

unread,

Cutting is silently skipped

Hi everyone, Affected versions: Opencast 6.5, 7.0, 7.1 Fix Versions: Opencast 6.6, 7.2 Description: A

8/2/19

4/3/19

[CVE-2019-3778] Security Vulnerability Spring Security OAuth

Hi everyone, this is an official security notice about a vulnerability in Opencast version ≤5.5 and ≤

unread,

[CVE-2019-3778] Security Vulnerability Spring Security OAuth

Hi everyone, this is an official security notice about a vulnerability in Opencast version ≤5.5 and ≤

4/3/19

12/10/18

[CVE-2018-19900] Paella Player Vulnerable to Script Injection

This is the official security notice regarding a security issue recently discovered in Opencast 5.0

unread,

[CVE-2018-19900] Paella Player Vulnerable to Script Injection

This is the official security notice regarding a security issue recently discovered in Opencast 5.0

12/10/18

12/10/18

[CVE-2018-16154] Opencast publicly publishes credentials for all tenant CA users

This is the official security notice regarding a security issue recently discovered in the

unread,

[CVE-2018-16154] Opencast publicly publishes credentials for all tenant CA users

This is the official security notice regarding a security issue recently discovered in the

12/10/18

12/10/18

[VE-2018-19899] Incorrect Access Control in Asset Manager

This is the official security notice regarding a security issue recently discovered in all asset

unread,

[VE-2018-19899] Incorrect Access Control in Asset Manager

This is the official security notice regarding a security issue recently discovered in all asset

12/10/18

10/22/18

[CVE-2018-16153] Opencast publishes global system account credentials

Hello, This is the official security notice regarding a security issue recently identified in all

unread,

[CVE-2018-16153] Opencast publishes global system account credentials

Hello, This is the official security notice regarding a security issue recently identified in all

10/22/18

9/3/18

Public access may be granted to ingested events without associated access control list

Hello, this is the official security notice regarding a security issue recently discovered in

unread,

Public access may be granted to ingested events without associated access control list

Hello, this is the official security notice regarding a security issue recently discovered in

9/3/18

5/31/18

LTI user provider may allow LMS admins to become Opencast admins

Hello, this is the official security notice regarding a security issue recently discovered in

unread,

LTI user provider may allow LMS admins to become Opencast admins

Hello, this is the official security notice regarding a security issue recently discovered in

5/31/18

5/31/18

Opencast Ignores Recording Permissions In Some Cases

Hello, this is the official security notice regarding a minor security issue recently discovered in

unread,

Opencast Ignores Recording Permissions In Some Cases

Hello, this is the official security notice regarding a minor security issue recently discovered in

5/31/18

12/4/17

Stream Security Leaks Information

Hello, This is the official security notice regarding a security issue recently discovered in the

unread,

Stream Security Leaks Information

Hello, This is the official security notice regarding a security issue recently discovered in the

12/4/17

12/4/17

Stream Security Cross-Tenant URL Signing Vulnerability

Hello, This is the official security notice regarding a security issue recently discovered in the

unread,

Stream Security Cross-Tenant URL Signing Vulnerability

Hello, This is the official security notice regarding a security issue recently discovered in the

12/4/17

9/21/17

Backend Libraries Updated

Hello, This is the official security notice regarding a set of issues in Opencast 3 prior to Opencast

unread,

Backend Libraries Updated

Hello, This is the official security notice regarding a set of issues in Opencast 3 prior to Opencast

9/21/17

7/14/17

Hello, this is the official security notice regarding a severe security issue recently discovered in

unread,

Hello, this is the official security notice regarding a severe security issue recently discovered in

7/14/17

7/10/17

Unescaped event and series titles when editing event or series (XSS)

Unescaped event and series titles when editing event or series in the administrative user interface

unread,

Unescaped event and series titles when editing event or series (XSS)

Unescaped event and series titles when editing event or series in the administrative user interface

7/10/17

7/10/17

Media Module and Player are vulnerable against script injection

The Opencast 2.x Media Module and Player are vulnerable against script injection, making it possible

unread,

Media Module and Player are vulnerable against script injection

The Opencast 2.x Media Module and Player are vulnerable against script injection, making it possible

7/10/17

7/10/17

Privilege Escalation Vulnerability In Opencast 2.x

The Problem ----------- In previous Opencast 2.x releases, anyone that can edit groups (in the Admin

unread,

Privilege Escalation Vulnerability In Opencast 2.x

The Problem ----------- In previous Opencast 2.x releases, anyone that can edit groups (in the Admin

7/10/17

7/10/17

Critical Security Issue Allowing Arbitrary Code Execution

The Problem =========== Opencast comes with workflow operations allowing users to execute arbitrary

unread,

Critical Security Issue Allowing Arbitrary Code Execution

The Problem =========== Opencast comes with workflow operations allowing users to execute arbitrary

7/10/17

12/6/16

Solr May Handle Roles Incorrectly

Hello, this is the official security notice regarding a security issue recently discovered in

unread,

Solr May Handle Roles Incorrectly

Hello, this is the official security notice regarding a security issue recently discovered in

12/6/16

12/14/15

Security Issue in Recording Access Control

Hello, this is the official security notice regarding a critical security issue recently discovered

unread,

Security Issue in Recording Access Control

Hello, this is the official security notice regarding a critical security issue recently discovered

12/14/15

12/8/15

Minor Security Issue In User REST Endpoint

Hello, this is the official security notice regarding a minor security issue recently discovered in

unread,

Minor Security Issue In User REST Endpoint

Hello, this is the official security notice regarding a minor security issue recently discovered in

12/8/15

8/27/15

Insecure ElasticSearch Configuration

Hello, this is the official security notice regarding a minor security issue recently discovered in

unread,

Insecure ElasticSearch Configuration

Hello, this is the official security notice regarding a minor security issue recently discovered in

8/27/15

12/1/14

Public Access on Java Management Extension in Opencast Matterhorn

Hello, this is the official security notice regarding a minor security issue recently discovered in

unread,

Public Access on Java Management Extension in Opencast Matterhorn

Hello, this is the official security notice regarding a minor security issue recently discovered in

12/1/14

7/25/14

Java Debugging might allow remote connection to Matterhorn

Hello, This is the official security notice regarding a minor security issue recently discovered in

unread,

Java Debugging might allow remote connection to Matterhorn

Hello, This is the official security notice regarding a minor security issue recently discovered in

7/25/14

Search

Clear search

Close search

Google apps

Main menu