1.8.27 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:
Changelog for 1.8.27
1.8
1.8.26 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:
Changelog for 1.8.26
- Fix double-counting of lines with business units in the trial balance (#6402)
For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.8.26/README.md
1.8.25 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the fix for a dataloss issue that was reported
to us two days ago. The issue concerns the deletion of batches, which
causes loss of information linking payments to the transactions being
paid. This issue is present in all 1.8 releases before 1.8.25.
Additionally, it contais the following fixes and improvements:
Changelog for 1.8.25
1.8.24 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:
Changelog for 1.9.5
1.8.23 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:
Changelog for 1.8.23
- Use a temp table to prevent bulk payments trampling on each other
- Fix sorting on fixed asset searches (#6151)
For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.8.23/README.md
1.8.22 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:
Changelog for 1.8.22
Security advisory for CVE-2021-3882 (non-Secure session cookie)
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
Summary
LedgerSMB does not set the 'Secure' attribute on the session authorization
cookie when the client uses HTTPS and the LedgerSMB server is behind a
reverse proxy. By tricking a user to use an unencrypted connection (HTTP),
an attacker may be able to obtain the authentication data by capturing
network traffic.
Known vulnerable
All of:
- 1.8.0 upto 1.8.21 (including)
1.8.21 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:
Changelog for 1.8.21
1.8.20 Released
The LedgerSMB development team is happy to announce yet another new
version of its open source ERP and accounting application.
This release contains the following fixes and improvements:
Changelog for 1.8.20
1.8.19 Released
Unfortunately, the fixes for the security vulnerabilities
released on Monday August 23 regressed some functionalities.
This release fixes those regressions:
Changelog for 1.8.19
- Follow-up for the fix to CVE-2021-3693; fix bulk-posting payments
- Follow-up for the fix to CVE-2021-3693; fix incorrectly backported change
For installation instructions and system requirements, see
https://github.com/ledgersmb/LedgerSMB/blob/1.8.19/README.md