3.16.5 Security Release

RELEASE NOTES FOR KOHA 3.16.5 – Security Release

It is advised that all sites upgrade to this release immediately, as it fixes an important security bug.

10 Dec 2014
========================================================================

Koha is the first free and open source software library automation package
(ILS). Development is sponsored by libraries of varying types and sizes,
volunteers, and support companies from around the world.
The website for the Koha project is

http://koha-community.org/

Koha 3.16.5 can be downloaded from:

http://download.koha-community.org/koha-3.16.05.tar.gz

Installation instructions can be found at:

http://wiki.koha-community.org/wiki/Installation_Documentation

OR in the INSTALL files that come in the tarball

Koha 3.16.5 is a security release.

Security fix
============

13425 – Facets in the OPAC have an xss vulnerability

New features in 3.16.5
======================

———-

Enhancements in 3.16.5
======================

———-

Critical bugs fixed in 3.16.5
======================

OPAC
———-
12849 major Sending a list has malformed links

Other bugs fixed in 3.16.5
======================

———-

New sysprefs in 3.16.5
======================

System requirements
======================

Important notes:

* Perl 5.10 is required
* Zebra is required

Documentation
======================

The Koha manual is maintained in DocBook.The home page for Koha
documentation is

http://koha-community.org/documentation/

As of the date of these release notes, only the English version of the
Koha manual is available:

http://manual.koha-community.org/3.16/en/

The Git repository for the Koha manual can be found at

http://git.koha-community.org/gitweb/?p=kohadocs.git;a=summary

Translations
======================

Complete or near-complete translations of the OPAC and staff
interface are available in this release for the following languages:

* English (USA)
* Arabic (99%)
* Armenian (100%)
* Czech (99%)
* Danish (86%)
* French (97%)
* German (100%)
* Italian (100%)
* Kurdish (68%)
* Polish (89%)
* Portuguese (99%)
* Slovak (100%)
* Spanish (100%)
* Swedish (86%)
* Turkish (100%)
* Vietnamese (94%)

Partial translations are available for various other languages.

The Koha team welcomes additional translations; please see

http://wiki.koha-community.org/wiki/Translating_Koha

for information about translating Koha, and join the koha-translate
list to volunteer:

http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-translate

The most up-to-date translations can be found at:

http://translate.koha-community.org/

Release Team
======================

The release team for Koha 3.16.5 is

Release Manager: Galen Charlton <gmc@esilibrary.com>
Documentation Manager: Nicole C Engard <nengard@gmail.com>
Translation Manager: Bernardo Gonzalez Kriegel <bgkriegel@gmail.com>
QA Manager: Katrin Fischer <Katrin.Fischer@bsz-bw.de>
QA Team: Ruth Bavousett <druthb@gmail.com>
Chris Cormack <chrisc@catalyst.net.nz>
Marcel de Rooy <M.de.Rooy@rijksmuseum.nl>,
Jonathan Druart <jonathan.druart@biblibre.com>,
Brendan Gallagher <brendan@bywatersolutions.com>
Kyle Hall <kyle@bywatersolutions.com>
Paul Poulain <paul.poulain@biblibre.com> Martin Renvoize <martin.renvoize@ptfs-europe.com>
Module Maintainers: Tomás Cohen Arazi <tomascohen@gmail.com>
Jared Camins-Esakov <jcamins@cpbibliography.com>
Kyle Hall <kyle@bywatersolutions.com>
Bug Wranglers: Chris Cormack <chrisc@catalyst.net.nz>
Magnus Enger <magnus@enger.priv.no>
Packaging Manager: Robin Sheat <robin@catalyst.net.nz>
VM Manager: Samuel Desseaux <samuel.desseaux@ecp.fr>
Database Documentation Managers:
Joy Nelson <joy@bywatersolutions.com>
Samuel Desseaux <samuel.desseaux@ecp.fr>

Release Maintainer (3.8.x): Kyle Hall <kyle@bywatersolutions.com>
Release Maintainer (3.10.x): Bernardo Gonzalez Kriegel <bgkriegel@gmail.com>
Release Maintainer (3.12.x): Tomás Cohen Arazi <tomascohen@gmail.com>
Release Maintainer (3.14.x): Fridolin Somers <fridolin.somers@biblibre.com>
Release Maintainer (3.16.x): Mason James <mtj@kohaaloha.com>

Credits
======================

We thank the following libraries who are known to have sponsored
new features in Koha 3.16.5:

We thank the following individuals who contributed patches to Koha 3.16.5.

* Chris Cormack (1)
* Mason James (1)
* Robin Sheat (1)

We thank the following libraries, companies, and other institutions who contributed
patches to Koha 3.16.5

* Catalyst (2)
* KohaAloha (1)

We also especially thank the following individuals who tested patches
for Koha 3.16.5.

* Brendan Gallagher (1)
* Galen Charlton (1)
* Katrin Fischer (1)
* Mason James (2)
* Nick Clemens (1)
* Tomas Cohen Arazi (1)

We regret any omissions. If a contributor has been inadvertently missed,
please send a patch against these release notes to
koha-patches@lists.koha-community.org.

Revision control notes
======================

The Koha project uses Git for version control. The current development
version of Koha can be retrieved by checking out the master branch of

git://git.koha-community.org/koha.git

The branch for this version of Koha and future bugfixes in this release line is 3.16.x.

The last Koha release was 3.18.1, which was released on December 10, 2014.

Bugs and feature requests
======================

Bug reports and feature requests can be filed at the Koha bug
tracker at

http://bugs.koha-community.org/

He rau ringa e oti ai.
(Many hands finish the work)

##### Autogenerated release notes updated last on 10 Dec 2014 06:23:49 Z #####

About

just another Koha hacker