1.3.41 released
LedgerSMB 1.3.41 has been released.
It includes a single fix to the single payment workflow which caused an error in some cases while paying invoices.
News
1.3.40 released
This release has a couple of sales tax fixes, a database schema fix and a couple of others. Highly recommend upgrading at earliest opportunity.
Changelog for 1.3.40
1.3.39 released
March 31st, 2014 -- Announcement of the 1.3.39 release.
We've released LedgerSMB 1.3.39. This provides a number of fixes. Users of 1.3.38 are urged to upgrade as soon as possible, due to a bug inadvertently introduced in that release, which causes difficulty posting AR and AP transactions.
Changelog for 1.3.39
1.3.38 released
February 25th, 2014, Announcement of the release of 1.3.38.
Several of the bugs fixed in this release probably go all the way back to 1.2 and beyond.
Changelog for 1.3.38
Heartbleed and LedgerSMB
What follows is a slightly edited version of a post to the email lists. While LedgerSMB does not directly utilize OpenSSL, it is usually deployed on web servers that do. No upgrades of LedgerSMB are required, but you may need to update the security libraries of your web server. Please read further for the sorts of implications this has regarding LedgerSMB and what we would recommend about mitigating and recovering from risks.
- Read more about Heartbleed and LedgerSMB
- Log in or register to post comments
Security advisory (fixed in 1.3.37)
Security Advisory: LedgerSMB < 1.3.36, Improper Logout on Some Browsers
Severity: Low (cvssv2 base score: 3.6, total 0.5)
Remotely Exploitable: No
Complexity of Attack: High
Impact: Relatively low.
Prerequisite for Attack: Physical Access to Previously Logged In Browser, so high complexity in most cases.
Attack Vector: Physical, against client.
Impact: The attacker may gain access unexpectedly to LedgerSMB using the client's previous credentials.
Background
- Read more about Security advisory (fixed in 1.3.37)
- Log in or register to post comments
1.3.37 released
LedgerSMB 1.3.37 has been released. This is a significant release with a number of important fixes including two security fixes (please stay tuned for security advisories on these two usually-minor security issues).
- Read more about 1.3.37 released
- Log in or register to post comments
The LedgerSMB Core Team is proud to release 1.3.36.
This release corrects a significant issue in printing invoices with manually calculated sales tax. This is a significant update, and anyone using 1.3.35 or manually entered sales tax should update relatively quickly.
- Read more about The LedgerSMB Core Team is proud to release 1.3.36.
- Log in or register to post comments
LedgerSMB 1.3.35 released
LedgerSMB 1.3.35 has been released. This release includes a fairly large number of relatively minor fixes, as well as the addition of invoice creation date tracking and a number of fixes for locale-specific requirements. If you are having any issues with the bugs fixed, you should upgrade immediately.
- Read more about LedgerSMB 1.3.35 released
- Log in or register to post comments
LedgerSMB 1.3.34 released
he LedgerSMB team has released 1.3.34. Although this is a bugfix release with some significant fixes in it, it also includes a few minor enhancements, such as the ability to search for drafts and batches without specifying a type.
The complete changelog is as follows: