Openfire

Improvement

• [OF-3156] - Improve error handling when MUC service creation fails in admin console
• [OF-3160] - Bump BouncyCastle.version from 1.78.1 to 1.83
• [OF-3164] - High CPU usage caused by exception-based control flow in UserManager.isRegisteredUser()
• [OF-3177] - Improve logging when TrustManager initialization fails (exception currently suppressed)
• [OF-3200] - Improve InMemoryPubSubPersistenceProvider.purgeNode() to target the service cache entry directly instead of scanning all entries

Task

• [OF-3161] - Upgrade Netty to 4.1.131 version
• [OF-3162] - Upgrade Apache commons-text from 1.10.0 to 1.15.0
• [OF-3178] - Update install4j to 12.0.2

Bug

• [OF-2637] - Admin Console -> Logs viewer. Selecting 'All' lines causes exception
• [OF-3132] - When obtaining user sessions for bare JID, not all sessions are returned
• [OF-3165] - Fix incorrect message in closeNeverEncryptedConnection method
• [OF-3175] - Openfire startup deadlocks during autosetup when encrypted XML properties are processed
• [OF-3197] - updateSubscription() sets wrong parameter index when deleting a subscription in state none, silently failing to delete the correct row
• [OF-3198] - LOAD_LAST_ITEMS_LIMIT query returns items in ascending order, causing incorrect results for non-SQL Server, non-Oracle databases
• [OF-3205] - always update lastPublished when same item is overwritten (XEP-0060 §7.1.2)

sha256sum values for release artifacts

c49add8f50999b2d7fcdd8960bc7d70bf59eb95d12daedf92902e4b034c1c737  openfire-5.0.4-1.noarch.rpm
14d22bef24fb01770f51c655c8b3b54207125b1b70641175d8ad25b585e6332a  openfire_5.0.4_all.deb
ddd40e0bac4c4fae0678b6df4fd5ad28f77af50fd530e3327326f3b488f16ae4  openfire_5_0_4.dmg
8c2fcb27f9afe01b79d59f7bf0736b21cdb72b5464de25a183b596329e351099  openfire_5_0_4.exe
01c7314268d87b1f8eee0677bb89656f12a082e6461b207d3955f5d9632e2f78  openfire_5_0_4.tar.gz
13b579672b2ce238934aa919cd968636c0f5c8afda5aeb3aec08d60feca35df4  openfire_5_0_4_x64.exe
05b9e5fa976202ef97d183177f6de699cf68bf0cfd422f721a4c8dc5676c1612  openfire_5_0_4.zip

Improvement

• [OF-3130] - Update PostgreSQL JDBC driver to 42.7.8
• [OF-3134] - Upgrade HSLQDB from 2.7.1 to 2.7.4
• [OF-3135] - Improve wording of TLS Auth setting
• [OF-3139] - Remove obsolete transport icons

Bug

• [OF-3127] - ConcurrentModificationException on room join
• [OF-3133] - Fix datatype of muc#register_faqentry field
• [OF-3144] - Upgrade sqlserver JDBC driver to 10.2.4
• [OF-3146] - Chat room count value is incorrect
• [OF-3147] - server_bytes_out statistic is not being populated
• [OF-3148] - Admin MUC affiliations are not persisted in ofMucAffiliation (lost after restart)
• [OF-3149] - IllegalStateException occurs when removing shared groups due to multiple Iterator.remove() calls for a single Iterator.next().
• [OF-3155] - Resource policy "Always kick" does not function correctly

sha256sum values

a08493cb19bef6dd2b51ebe88d4ffd121553e2e4473ddbecf94f5ff350e367aa  openfire-5.0.3-1.noarch.rpm
3dd1e9de84d6b177f3b890bea7d6cd88359698bd82c2e656d4b937a8ef7af96e  openfire_5.0.3_all.deb
b3674baa3ab53a1f61db8846c3cdd16ce211917c4df3cee2d4a46fbba265ea76  openfire_5_0_3.dmg
cfabc92ab9e473e71f42ec40533a5d4ae7a9c1dc5ebd060784ce434ae1ba6c12  openfire_5_0_3.exe
fb13bd4e0aff7bd6cc16d78e6f2c35d8b59a95e4f4f886d353265306f151ec45  openfire_5_0_3.tar.gz
dcad510a8a7fda677b07281d08ebb29017555944eeb41c98fb4f38c743a341c4  openfire_5_0_3_x64.exe
0ee9a0837e75b785a40653f78b94a900431067f8a9d2bac5104d2971c46a9779  openfire_5_0_3.zip

Improvement

• [OF-3104] - When a MUC room's config gets changed, send appropriate status code
• [OF-3107] - Synchronize launch scripts
• [OF-3110] - Guard against unexpectedly empty input
• [OF-3112] - Less strict with regards to whitespace in base64 encoding
• [OF-3114] - AdHoc 'end user session' command to report how many sessions were ended
• [OF-3116] - IQLastActivityHandler should ignore IQ responses
• [OF-3118] - Bump org.apache.commons:commons-lang3 from 3.9 to 3.18.0
• [OF-3123] - For client mutual authentication, prefer Subject Alternative Name for identities

New Feature

• [OF-3100] - Have PEP 'process' function return a future

Bug

• [OF-3106] - /etc/init.d/openfire: when JAVA\_HOME is empty it fails to detect the best java version
• [OF-3108] - Certificate update breaks functionality
• [OF-3109] - HSQLDB database viewer doesn't always start
• [OF-3113] - UserNotFoundException in PresenceSubscribeHandler
• [OF-3117] - Unit test failures when there's a space in the base path
• [OF-3124] - CVE-2025-59154 Potential identity spoofing via unsafe CN parsing

sha256sum values

4e907c615b3a19af0a1b5ab68ae24825b737496f9cf1715c9feafe8f909086da  openfire-5.0.2-1.noarch.rpm
21271a6f22895852e50712236c45c7d213430171d5a3178474b8398f036ac07a  openfire_5.0.2_all.deb
06794a12acdd8f23ca3c40fcd7af1677d8108b4b23bb72424c2751b30cfb3d14  openfire_5_0_2.dmg
c1e830b5e016d0bcff40005cc7bb14c846fe0ec26fc5a3fc967c30e5b6d2e356  openfire_5_0_2.exe
c84ca15cd470d3233add97c852c738eb373859dc9968ad34ec581725164c8114  openfire_5_0_2.tar.gz
98b5cf96326c668efb18cd9347b808a5ef85162b4a0b703aaf8e29d82cc6c727  openfire_5_0_2_x64.exe
8e09ca3dc7fb84b116ce95d10bfa3ff045708cdac4b23bd3d78ccf318e8742d8  openfire_5_0_2.zip