announce  

Messages by Date

• 2025/12/29 [ANNOUNCE] Apache CloudStack Kubernetes Provider v1.2.0 Vishesh
• 2025/11/27 CVE-2025-59302: Apache CloudStack: Potential remote code execution on Javascript engine defined rules Harikrishna Patnala
• 2025/11/27 CVE-2025-59454: Apache CloudStack: Lack of user permission validation leading to data leak for few APIs Harikrishna Patnala
• 2025/11/11 [ANNOUNCE] Apache CloudStack LTS Release 4.22.0.0 Harikrishna Patnala
• 2025/10/29 [ANNOUNCE] Apache CloudStack Terraform Provider v0.6.0 Release Kiran Chavala
• 2025/10/27 [ANNOUNCE] Apache CloudStack LTS Release 4.20.2.0 Wei Zhou
• 2025/09/03 [ANNOUNCE] Apache CloudStack CloudMonkey v6.5.0 Abhishek Kumar
• 2025/08/28 [ANNOUNCE] Apache CloudStack Regular Release 4.21.0.0 Suresh Kumar Anaparti
• 2025/06/11 [ADVISORY] Security Improvements in Apache CloudStack Releases 4.19.3.0 and 4.20.1.0 Pearl Dsilva
• 2025/06/10 [ANNOUNCE] CloudStack 4.19.3.0 and 4.20.1.0 Release Pearl Dsilva
• 2025/03/05 [ANNOUNCEMENT] Apache CloudStack 4.19.2.0 release Daan Hoogland
• 2025/01/13 CVE-2025-22828: Apache CloudStack: Unauthorised access to annotations Nux
• 2024/12/03 [ANNOUNCE] Apache CloudStack LTS Release 4.20.0.0 João Jandre
• 2024/11/12 CVE-2024-50386: Apache CloudStack: Directly downloaded templates can be used to abuse KVM-based infrastructure Daniel Augusto Veronezi Salvador
• 2024/10/15 [ADVISORY] Apache CloudStack LTS Security Releases 4.18.2.4 and 4.19.1.2 Guto Veronezi
• 2024/10/15 CVE-2024-45219: Apache CloudStack: Uploaded and registered templates and volumes can be used to abuse KVM-based infrastructure Daniel Augusto Veronezi Salvador
• 2024/10/15 CVE-2024-45462: Apache CloudStack: Incomplete session invalidation on web interface logout Daniel Augusto Veronezi Salvador
• 2024/10/15 CVE-2024-45693: Apache CloudStack: Request origin validation bypass makes account takeover possible Daniel Augusto Veronezi Salvador
• 2024/10/15 CVE-2024-45461: Apache CloudStack Quota plugin: Access checks not enforced in Quota Daniel Augusto Veronezi Salvador
• 2024/08/06 CVE-2024-42222: Apache CloudStack: Unauthorised Network List Access Rohit Yadav
• 2024/08/06 [ANNOUNCE] Apache CloudStack LTS Security Releases 4.18.2.3 and 4.19.1.1 Nicolas Vazquez
• 2024/08/06 CVE-2024-42062: Apache CloudStack: User Key Exposure to Domain Admins Rohit Yadav
• 2024/07/22 CVE-2024-41107: Apache CloudStack: SAML Signature Exclusion Rohit Yadav
• 2024/07/22 [ANNOUNCE] Apache CloudStack CVE-2024-41107: SAML Signature Exclusion Abhishek Kumar
• 2024/07/19 [ANNOUNCE] Apache CloudStack LTS Maintenance Release 4.19.1.0 Suresh Kumar Anaparti
• 2024/07/08 [ANNOUNCE] Apache CloudStack LTS Security Releases 4.18.2.1 and 4.19.0.2 Abhishek Kumar
• 2024/06/30 [ANNOUNCE] CloudStack Kubernetes Provider v1.1.0 Release Vishesh
• 2024/04/19 [ANNOUNCEMENT] Apache CloudStack LTS Maintenance Release 4.18.2.0 João Jandre
• 2024/04/15 [ANNOUNCE] Apache CloudStack Terraform Provider v0.5.0 Release Kiran Chavala
• 2024/04/05 [ADVISORY] Apache CloudStack Security Releases 4.18.1.1 and 4.19.0.1 Rohit Yadav
• 2024/02/09 [ANNOUNCEMENT] Apache CloudStack 4.19.0.0 LTS Release Abhishek Kumar
• 2023/09/18 [ANNOUNCEMENT] Apache CloudStack LTS Maintenance Release 4.18.1.0 Wei ZHOU
• 2023/03/20 Apache CloudStack 4.18 LTS is released Daan Hoogland
• 2022/12/19 [ANNOUCE] Apache CloudStack 4.17.2.0 LTS Release Rohit Yadav
• 2022/09/27 [ANNOUCE] Apache CloudStack 4.17.1.0 LTS Release Abhishek Kumar
• 2022/07/19 [ADVISORY] Apache CloudStack SAML Single Sign-On XXE (CVE-2022-35741) Rohit Yadav
• 2022/06/07 [ANNOUCE] Apache CloudStack 4.17.0.0 Release Nicolas Vazquez
• 2022/03/08 [ANNOUNCE] Apache CloudStack 4.16.1.0 LTS Release Suresh Kumar Anaparti
• 2021/12/13 [ADVISORY] CloudStack Advisory on Apache Log4j Zero Day (CVE-2021-44228) Rohit Yadav
• 2021/11/15 [ANNOUNCE] Apache CloudStack 4.16.0.0 Release Nicolas Vazquez
• 2021/09/19 [ANNOUCE] Apache CloudStack 4.15.2.0 LTS Release Rohit Yadav
• 2021/07/11 [ANNOUCE] Apache CloudStack 4.15.1.0 LTS Release Rohit Yadav
• 2021/03/03 [ANNOUCE] Apache CloudStack 4.14.1.0 LTS Release Rohit Yadav
• 2021/01/20 [ANNOUNCE] Apache CloudStack 4.15.0.0 Release Rohit Yadav
• 2020/07/26 [ANNOUNCE] Apache CloudStack CloudMonkey v6.1.0 Rohit Yadav
• 2020/05/26 [ANNOUNCE] Apache(R) CloudStack(R) Release 4.14 (LTS) Andrija Panic
• 2020/05/01 [ANNOUNCE] Apache CloudStack LTS Maintenance Release 4.13.1.0 Andrija Panic
• 2016/10/27 Re: [ANNOUNCE] Apache CloudStack Security Releases 4.8.1.1, 4.9.0.1 Rohit Yadav
• 2016/10/26 [ANNOUNCE] Apache CloudStack Security Releases 4.8.1.1, 4.9.0.1 Rohit Yadav
• 2016/06/09 [ANNOUNCE] Apache CloudStack Security Releases 4.5.2.1, 4.6.2.1, 4.7.1.1, 4.8.0.1 Rohit Yadav
• 2015/01/09 [ANNOUNCE] Announcing Apache CloudStack 4.3.2 Chip Childers
• 2014/08/28 Announcing Apache(tm) CloudMonkey(tm) v5.2.0 Rohit Yadav
• 2014/07/26 [ANNOUNCE][ACS44] Apache CloudStack 4.4.0 is released Daan
• 2014/05/18 Announcing Apache CloudStack CloudMonkey 5.1.0 Chiradeep Vittal
• 2014/03/25 [ANNOUNCE] Realhostip Service is Being Retired John Kinsella
• 2014/03/25 [ANNOUNCE] Apache CloudStack 4.3.0 Released Chip Childers
• 2014/01/10 Updated [CVE-2013-6398] CloudStack Virtual Router stop/start modifies firewall rules allowing additional access David Nalley
• 2014/01/10 Updated [CVE-2014-0031] CloudStack ListNetworkACL API discloses ACLs for other users David Nalley
• 2014/01/10 [ANNOUNCE] Apache CloudStack 4.2.1 released David Nalley
• 2013/10/01 [ANNOUNCE] Apache CloudStack 4.2.0 Released Animesh
• 2013/10/01 [ANNOUNCE] Apache CloudStack 4.2.0 Released Animesh
• 2013/09/24 [ANNOUNCE] Apache CloudStack CloudMonkey 5.0.0 Chip Childers
• 2013/08/06 [CVE-2013-2136] Apache CloudStack Cross-site scripting (XSS) vulnerabiliity Chip Childers
• 2013/08/06 [ANNOUNCEMENT] Apache CloudStack 4.1.1 Released Chip Childers
• 2013/06/04 Apache CloudStack 4.1.0 Released Joe Brockmeier
• 2013/04/24 Apache CloudStack 4.0.2 Released Joe Brockmeier