This Confluence wiki site, maintained by DuraSpace prior to the recent merger with LYRASIS, will transition from the domain to the domain on Saturday, Nov 16 beginning at approximately 7pm ET. A period of downtime of 2-3 hours is expected. After the transition, this wiki will be available at All links to wiki pages will be redirected to the correct URL. If you have questions prior to or following the transition please contact:
Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Lowered severity of DS-3520


  • DSpace API security fixes:
    • [HIGH LOW SEVERITY]  Apache Commons Collections vulnerability (COLLECTIONS-580) (DS-3520 - requires a JIRA account to access)
      • Reported by Alan Orth
    • [HIGH SEVERITY]  BasicWorkflow system is vulnerable to unauthorized manipulations (was: DS-3431) (DS-3647 - requires a JIRA account to access)
      • Reported by Pascal-Nicolas Becker