Security Reporting

Past Security Bulletins

05.03.17
MarkLogic has released an update that addresses a security issue discovered in the MarkLogic document conversion mechanism. See below for more information about the MarkLogic release that patches this issue.
02.23.17
Background Information MarkLogic has released an update that addresses a security issue discovered in the MarkLogic document conversion mechanism. See below for more information about the MarkLogic release that patches this issue. Impact MarkLogic can convert PDF documents. This capability relies on functionality provided by Iceni (Argus) which is invoked explicitly through the function xdmp:pdf-convert() […]
11.01.16
Background Information MarkLogic has released updates which address a security issue discovered in MarkLogic document conversion and text extraction mechanisms. See below for more information about the MarkLogic releases which patch this issue. Impact MarkLogic can convert documents such as Microsoft Office and Adobe PDF and can extract metadata and text from binary documents. These […]
02.20.15
Background Information In early 2015, a significant security vulnerability was found in the glibc package. Glibc is an implementation of the standard C library and is a core part of all our currently supported Linux distributions. A code audit was performed by the Qualys research group and the following security advisory was made available: https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt. […]
04.10.14
Background Information A serious security vulnerability was discovered in the OpenSSL cryptographic software library. Impact MarkLogic application servers can be configured to use SSL, and MarkLogic uses OpenSSL to provide this capability. The following versions of MarkLogic are impacted by this vulnerability: MarkLogic 5.0-5 through 5.0-6 All versions of MarkLogic 6.0 (6.0-1 through 6.0-5) All […]
This website uses cookies.

By continuing to use this website you are giving consent to cookies being used in accordance with the Privacy Policy.