[ANN] Release of Bugzilla 3.2.10, 3.4.10, 3.6.4, and 4.0rc2
mkanat at bugzilla.org
Tue Jan 25 01:07:06 UTC 2011
Some serious security issues were discovered in Bugzilla, and as a
result we have four security releases for you today. We recommend that
all Bugzilla administrators read the Security Advisory that was
published along with these releases, and we also recommend that you
update as soon as possible.
Bugzilla 4.0rc2 is our second Release Candidate for Bugzilla 4.0.
This release has received QA testing and should be considerably more
stable than the development releases before it. It is still not
considered fully stable, and so you should understand that if you use
it, you use it at your own risk.
If feedback from this release candidate indicates that it is mostly
stable, then Bugzilla 4.0 will be released in a few weeks. If feedback
indicates that more extensive fixes are needed, there may be another
release candidate after this one.
Bugzilla 3.6.4 is our latest stable release. It contains various
useful bug fixes in addition to the security patches. This is likely to
be the last bug-fix release in the 3.6 series. Once Bugzilla 4.0 is
released, the 3.6 series will only get security fixes.
Bugzilla 3.4.10 and 3.2.10 are security updates for the 3.4
branch and the 3.2 branch, respectively.
As a reminder, once Bugzilla 4.0 is released, the Bugzilla 3.2.x
series will reach End Of Life, meaning that no new updates will
be released for 3.2.x, even if there are serious security issues found
in that series. All installations running 3.2.x are strongly encouraged
to update to 3.6.4 or 4.0 (once it is released).
Bugzilla is available at:
Release Notes & Changes
Before installing or upgrading, you should read the Release Notes for
this version of Bugzilla:
It is VERY IMPORTANT to read the Release Notes if you are
upgrading from one major version to another (such as 3.4.x to 3.6.x).
To see a list of all changes between your version of Bugzilla and
the current version of Bugzilla, you can use the chart at:
The Bugzilla Update
You can see the latest updates from the Bugzilla Project and
the status of Bugzilla development on The Bugzilla Update:
Also, you can follow the Bugzilla Project on Twitter for frequent
updates on new features being developed in Bugzilla, our current
release plans, and general up-to-the-minute news on what's happening
with the Bugzilla Project:
If you find a bug in Bugzilla, please report it! Instructions are
at this URL:
You can ask questions for free on the mailing lists (or in IRC)
about Bugzilla, or you can hire a paid consultant to help you out:
Free Support: http://www.bugzilla.org/support/
Paid Support: http://www.bugzilla.org/support/consulting.html
Bugzilla is a "Defect Tracking System" or "Bug-Tracking System."
Defect Tracking Systems allow individuals or groups of developers
to keep track of outstanding bugs in their product effectively.
Most commercial defect-tracking software vendors charge enormous
licensing fees. Despite being "free", Bugzilla has many features
its expensive counterparts lack. Consequently, Bugzilla has quickly
become a favorite of thousands of organizations across the globe, and
is widely regarded as one of the top defect-tracking systems available.
See http://www.bugzilla.org/about/ for more details.
Release Manager, Bugzilla Project
Competent, Friendly Bugzilla, Perl, and IT Services
More information about the announce