Are Your Websites Up to Date?You can keep track of what versions of concrete5, Drupal, Joomla, Magento, MediaWiki, Moodle, PrestaShop, Revive Adserver, TYPO3, SPIP, WordPress, and Zen Cart are running on all of the websites you manage with our Up to Date? Chrome app.
Search This Blog
Security Updates Feed
We Perform Upgrades of:
Want Us to Include Updates for Other Software?If you are interested in us providing updates on software we don't currently include updates for please send us a suggestion.
Category Archives: OpenXMake Sure Your Revive Adservers are Up to Date
With our Up to Date? Chrome app you can keep track of the Revive Adserver versions (as well other web apps) on all of the websites you manage in one place, so you can easily check if they are in need of an upgrade.
Need OpenX Upgraded?
We can upgrade your OpenX ad server to the new Revive Adserver for you.
OpenX 2.8.11 was released yesterday. At some point the downloadable version of OpenX 2.8.10 was compromised to include malicious code that allowed remote code execution. This new version restores the versions of the files as they should have been.
It is unclear when the downloads of OpenX 2.8.10 became compromised. OpenX either has decided not release that information or does not know (considering that they did not detect the files had been modified it would be reasonable to assume they don’t know). We checked a copy of OpenX 2.8.10 downloaded on the September 12, 2012, the day it was released, and it does not contain the backdoor. So the malicious code was added some time after that.
OpenX 2.8.10 was released yesterday. No details on what changes were made have been released so far.
Update (September 14, 2012): According to the update announcement now appearing in OpenX this release “addresses recent reported security issues”. No detail of what those were was provided, which unfortunately has been an issue with OpenX for some time.
OpenX 2.8.9 was released yesterday. The new version resolves unspecified security issues.
OpenX 2.8.8 was released last Thursday. The new version includes security fixes. OpenX has not provided details on what the security fixes were for but they are warning that version 2.8.7 “might be vulnerable to certain attacks and is probably not secure.”