Release Notes 24.09.03

home / Download /Release Notes 24.09.03

Apache OFBiz® 24.09.03, released in November 2025, is the third release of the 24.09 series, which has been feature-frozen since September 2024, receiving only bug fixes.

Sub-task

[OFBIZ-13285] - [SECURITY] Several CVEs in Apache Tomcat

Bug

[OFBIZ-13278] - Repeated REST API exception results in generic 500 error instead of specific response
[OFBIZ-13284] - Set default security headers in writeJSONtoResponse and ensure SameSite cookie is returned
[OFBIZ-13290] - InventoryReports screen broken
[OFBIZ-13303] - Error map is missing in the returned service result
[OFBIZ-13308] - OFBiz entity import screen is broken
[OFBIZ-13310] - [SECURITY] Several CVEs in Apache Tomcat

Improvement

[OFBIZ-13292] - Improve ImageManagementServices code
[OFBIZ-13293] - Reco
[OFBIZ-13295] - Check parameters passed in URLs
[OFBIZ-13304] - Improves init-gradle-wrapper.sh
[OFBIZ-13309] - Hide Server Version Information on Error Pages