Important Notices and Security Alerts

Security Advisories are available on the Alation Community. Viewing this information requires a Community login: Security Advisories.

Alation has issued the following advisories:

  • June 17, 2023 - Oracle Java SE Multiple Vulnerabilities

  • November 3, 2022 - Encryption Key Reuse Security Advisory

  • October 28, 2022 - Update to Log4j 1.x Security Advisory

  • August 12, 2022 - Log4j 1.x Security Advisory

  • April 26, 2022 - Hive Log4j 1.x Advisory

  • April 8, 2022 - Spring4Shell Advisory

  • March 5, 2022 - JDBC Driver Security Advisory

  • January 24, 2022 - Log4j 2 Update and Databricks Connector Security Advisory

  • December 22, 2021 - Log4j 2 CVE-2021-45105 Security Advisory

  • December 17, 2021 - Update to December 15 Log4j2 CVE-2021-45046 Security Advisory

  • December 15, 2021 - Log4j 2 CVE-2021-45046 Security Advisory

  • December 10, 2021 - Log4j 2 Security Advisory

  • Migration to New Alation Support Help Desk on July 3, 2020

  • November 11, 2019 - Java JDK Security Advisory

  • September 25, 2019 - Update to April 17 Important Security Alert

  • June 4, 2019 - Patch Alert Security Bulletin - Data Source Credentials in taskserver.log Files

  • April 23, 2019 - Important Security Update - Potential Transmission of Access Credentials to Alation

  • April 17, 2019 - Important Security Alert - PII on Customer Servers

  • April 16, 2019 - Important Update to April 15, 2019 - Patch Alert Security Bulletin

  • April 15, 2019 - Patch Alert Security Bulletin - Potential Internal LDAP-Related Access to Alation Usernames and Passwords

  • January 5, 2018 - Meltdown and Spectre Security Flaws

  • Old Backups Are Not Cleaned Up in V R3 (Builds 5.5.0 Through 5.6.5)