Thanks to the many people who contributed to Redmine since last year, I'm glad to announce that Redmine 4.0.0 is now available for download. It brings [[Changelog_4_0
#400-2018-12-09|more than 200 changes]] including:
- a major change to email notifications: each user now receives its own notification email whereas previous versions were sending a single email to all the notified users
- many improvements to text formatting
- the replacement of Coderay by Rouge to support [[RedmineCodeHighlightingLanguages|more languages]] for code highlighting
Email delivery now relies on Rails ActiveJob. Emails are sent asynchronously by default. But you should consider configuring a persistent backend for ActiveJob since the default uses an in-memory queue that is not well suited for production environnements:
https://guides.rubyonrails.org/v5.2/active_job_basics.html#job-execution
Redmine 4.0.0 uses Rails 5.2.2, the latest Rails version released a few days ago.
Redmine 3.4.7 and 3.3.9 are maintenance releases for 3.4.x and 3.3.x users. You can review the details in the [[Changelog]]. They both include an upgrade to Rails 4.2.11 that fixed 2 Rails vulnerabilities. Although these vulnerabilities does not affect Redmine 3.x, you should upgrade if possible.
These maintenance releases are available for [[download]].
They include several fixes that you can review the changes in the [[Changelog]].
These maintenance releases are available for [[download]].
You can review the changes in the [[Changelog]].
Thanks to all the contributors who worked on these releases!
The first maintenance releases for 2018 are available for [[download]], happy new year!
You can review the changes in the [[Changelog]].
Security: All of these releases include a fix for a remote command execution vulnerability in the Mercurial adapter. Thanks to Yuya Nishihara who reported this issue to the Redmine team. If you are using Mercurial repositories with Redmine, you should update to one of these releases as soon as possible.
These 3 new maintenance release are available for [[download]].
You can review the changes in the [[Changelog]].
Security: All of these releases include a fix for multiple XSS vulnerabilities. Thanks to Andi Fink and Holger Just who reported them to the Redmine team.
This maintenance release addresses a [[Changelog_3_4|few more issues]] that were found in the latest Redmine 3.4.x releases.
Thanks to the contributors who reported these defects to the Redmine dev team.
This maintenance release addresses 2 defects that were found in Redmine 3.4.0:
- #26364: Sort is not reflected when exporting issue list to CSV
- #26376: Wrong issue counts and spent time reported on the project overview
It also comes with traditional Chinese and Bulgarian translation updates.
The new feature release version:3.4.0 is now available for download. It includes 200 changes that can be reviewed in the [[Changelog_3_4|Changelog]].
Redmine 3.3.4 and 3.2.7 are maintenance release for 3.3.x and 3.2.x users.
Redmine version:3.3.3 and version:3.2.6 are maintenance releases available for download. You can review the list of changes in the [[Changelog]].
Security: these 2 releases fix several vulnerabilities, including a stored XSS when displaying specifically crafted attachments. Thanks to Nikita and Planio for reporting theses issues.
Redmine version:3.3.2 and version:3.2.5 are maintenance releases available for [[download]]. You can review the list of changes in the [[Changelog]].
Have a happy new year!