Make sure you update to S/Notify 4.1

We would like to note that we have updated the Bouncy Castle crypto library in S/Notify 4.1, and that this version of the library fixes flaws that may lead to high CPU usage or even a DoS (Denial of Service) under certain circumstances. The following CVEs have been addressed and may be relevant for its use within S/Notify:

Note that especially CVE-2024-30172 could be used for DoS (Denial of Service) attack. This is particularly true if you allow user uploads or, in Jira, the extraction and use of certificates or keys from incoming email.

Therefore, we recommend all customers to plan a short-term update to S/Notify for Jira 4.1, S/Notify for Confluence 4.1 and/or S/Notify for Bitbucket 2.1 if they haven't already.

S/Notify 4.1 released

Our new release of S/Notify Email Encryption brings you useful improvements and new features

We are delighted to announce the release of S/Notify Email Encryption 4.1.0 for Jira, S/Notify Email Encryption for Confluence 4.1.0, as well as S/Notify Email Encryption for Bitbucket 2.1.0. This update introduces numerous improvements, along with new features, to ensure your confidential data remains protected and your communication workflows are more streamlined than ever before.

Here's what this update brings you:

Improvements

New Features

We also fixed a couple of smaller bugs, most notably are probably those with regard to S/MIME Validation:

Accessibility

We fixed some issues and made some enhancements that you won't see, but are key to better accessibility for visually impaired users. We also published our first Accessibility Compliance Report (ACR), sometimes also referred to VPAT, for S/Notify for Jira and Jira Service Management. You can download the ACR from here.

Thank you for your continued trust in S/Notify. We are excited to embark on this journey of enhanced email security together.

Why and How We Love Helping Our Customers

Did you ever want to know what drives us to help our customers thrive by focussing on their core competences in a secure environment? Why we think that email encryption is an important part of security? And why we are so passionate about our proven S/Notify Email Encryption and the innovative Uptrust Email Encryption Server solutions? Then you can now read the interview by SafetyDetectives with our CEO to gain some insights.

SafetyDetectives is a platform dedicated to providing insightful and engaging interviews with top executives and innovators in the technology and cybersecurity sectors. Their mission is to bring forward the latest trends, challenges, and solutions from high-tech companies, software developers, AI experts, and cybersecurity leaders. Their in-depth interviews offer a unique glimpse into the minds of industry pioneers, providing their readers with valuable knowledge and perspectives on cutting-edge technologies and security practices.

Let us know how you like the interview, and don't hesitate to reach out if you have further questions!

Article link: SafetyDetectives Interview With Metin Savignano - Founder at Savignano Software Solutions