Magento 2.4.6-p2, 2.4.5-p4 and 2.4.4-p5 Security Releases

·

·

On August 7, 2023 Adobe released 3 new versions of Magento 2.4.

jQuery-UI library version 1.13.1 has a known security vulnerability (CVE-2022-31160) that affects multiple versions of Adobe Commerce and Magento Open Source. This library is a dependency of Adobe Commerce and Magento Open Source 2.4.4, 2.4.5, and 2.4.6. Merchants running affected deployments should apply the patch specified in the Query UI security vulnerability CVE-2022-31160 fix for 2.4.4, 2.4.5, and 2.4.6 releases Knowledge Base article.

You’ll find more details in each version’s release notes.

Magento 2.4.6-p2

Adobe Commerce 2.4.6-p2 is a security release that provides three security fixes that enhance your Adobe Commerce 2.4.6 or Magento Open Source 2.4.6 deployment. It provides fixes for vulnerabilities that have been identified in previous releases.

See full release notes for more details.

Magento 2.4.5-p4

Adobe Commerce 2.4.5-p4 is a security release that provides three security fixes that enhance your Adobe Commerce 2.4.5 or Magento Open Source 2.4.5 deployment. It provides fixes for vulnerabilities that have been identified in previous releases.

See full release notes for more details.

Magento 2.4.4-p5

Adobe Commerce 2.4.4-p5 is a security release that provides three security fixes that enhance your Adobe Commerce 2.4.4 or Magento Open Source 2.4.4 deployment. It provides fixes for vulnerabilities that have been identified in previous releases.

See full release notes for more details. Picture by Noah Buscher.