Update the Behat tests: Redmine 6.0.4, 5.1.7 and 5.0.12 released (security fixes)

We have released new maintenance updates, Redmine [6.0.4](https://www.redmine.org/versions/206), [5.1.7](https://www.redmine.org/versions/205) and [5.0.12](https://www.redmine.org/versions/207).  
These 3 maintenance releases are available for [download](https://www.redmine.org/projects/redmine/wiki/Download), you can review the changes in the [Changelog](https://www.redmine.org/projects/redmine/wiki/Changelog).
All versions contain **multiple important security fixes**:
* 2 XSS vulnerabilities
* Project query leaks details of private projects
* /my/account does not correctly enforce sudo mode
* Update Nokogiri to 1.18.3 to address CVE-2025-24928 and CVE-2024-56171  
  You can review them in [Security Advisories](https://www.redmine.org/projects/redmine/wiki/Security_Advisories).

Beside the security issues, [#42245](https://www.redmine.org/issues/42245 "Defect: 5.1-stable: Redmine fails to start with error: Unknown database adapter `"mysql2"` found in confi... (Closed)") is now fixed also on [5.1.7](https://www.redmine.org/versions/205).

Thank you to everyone who contributed to the releases and special thanks to Holger Just for handling all these security issues.

https://www.redmine.org/news/152

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update the Behat tests: Redmine 6.0.4, 5.1.7 and 5.0.12 released (security fixes) #443

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Update the Behat tests: Redmine 6.0.4, 5.1.7 and 5.0.12 released (security fixes) #443

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions