Roller is the open source Java blog server that drives blogs.oracle.com, the blogs in IBM Lotus Connections, and others. Read more on the about page.

Site hosted by



« Roller on OpenShift | Main | Apache Roller 5.0.3... »

Apache Roller 5.0.2 security fix release now available

11.03.2013 | 0 Comments

The Apache Roller project has announced the availability of a new Apache Roller 5.0.2 release. This new release is identical to Apache Roller 5.0.1 but with the addition of two security fixes: 1) fix for XSS vulnerability in Roller's search feeds 2) fix for remote code execution vulnerability.

All Roller sites are urged to upgrade to Roller 5.0.2 as soon as possible. Download Apache Roller 5.0.2 at the Roller downloads page here.

You can find a little more information about the vulnerabilities at the links below:

« Roller on OpenShift | Main | Apache Roller 5.0.3... »