Note to readers

This publication does not currently meet the Government of Canada's Web Standards. The information remains valid.

Joomla! security update

Number: AV17-071
Date: 18 May 2017

Purpose

Joomla! has released a new version that contains security fixes to address vulnerabilities in Joomla!

Assessment

Joomla! has released version 3.7.1 of its web content management system that contains a security fix to address a critical vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. .

Versions affected: Joomla! 3.7.0 and earlier

CVE Reference: CVE-2017-8917

Suggested action

CCIRC recommends that owner/operators test and deploy the vendor released updates or workarounds to affected platforms accordingly

References

https://www.joomla.org/announcements/release-news/5705-joomla-3-7-1-release.html

Date modified: