OpenIDM 6.3.0 Released

Download

What’s new

• CVE-2019-11358, CVE-2020-11023: Updated jQuery to version 3.7.1, addressing.
• CVE-2025-27533: Fixed unchecked buffer length in Apache ActiveMQ to prevent excessive memory allocation.
• CVE-2025-48734, CVE-2020-15250: Resolved Apache Commons improper access control vulnerabilities.
• CVE-2025-48976: Mitigated Apache Commons FileUpload denial of service vulnerabilities via part headers.
• CVE-2025-48924: Addressed uncontrolled recursion vulnerability in Apache Commons Lang when processing long inputs.
• Updated Pax Web to version 7.4.6 in preparation for Jakarta migration.
• Added root group permissions to the Docker /opt/openidm directory.
• Bumped OpenICF dependency to version 1.8.0.
• Fixed OpenAM and OpenDJ documentation links.
• Migrated deployment process from Legacy OSSRH to Central Portal.

Full changeset (more details)

Thanks for the contributions

1. Valery Kharseko

2. Maxim Thomas