Mattermost security update 5.18.1 / 5.17.3 / 5.16.5 / 5.9.8 (ESR) released

We have released a recommended security update via Mattermost Team Edition 5.18.1, 5.17.3, 5.16.5, 5.9.8 (ESR) and Mattermost Enterprise Edition 5.18.1, 5.17.3, 5.16.5, 5.9.8 (ESR).

This security update addresses a high level vulnerability discovered during a security research review by Juho Nurminen.

Follow the standard upgrade instructions to apply the updates.

Per the Mattermost Responsible Disclosure Policy, details of the update will be posted on our security updates page 30 days after release.

This update also resolves the following bug, which was also backported to 5.15.5:

  • Fixed an issue where migrating accounts from email to SAML failed.

Share this article:

mm

Amy Blais

Amy Blais is the Release Manager at Mattermost, Inc. Her other roles include Community and Customer Support. She previously served as the company’s Associate Marketing Manager.

To get future blog posts to your inbox, subscribe below.

An update from our co-founders: Remote work when SaaS is not an option Learn more >