We released OpenProject 10.0.2.
The release contains a security related fix and we urge updating to the newest version.
The security bugfix is still awaiting CVE assignment. This announcement will be appropriately updated.
OtherBug fixes and changes
- Fixed: Inconsistent row heights when resizing widgets [#31048]
- Fixed: In Budgets projected unit costs and labor cost is not shown [#31247]
- Fixed: Restart puma workers to cope with potential memory leaks [#31262]
- Fixed: “Enterprise Edition” blue bar would be nicer horizontally [#31265]
Thanks to David Haintz from SEC Consult Vulnerability Lab for identifying and responsibly disclosing the identified issues.
A big thanks to community members for reporting bugs and helping us identifying and providing fixes.
Special thanks for reporting and finding bugs go to Andrea Pistai