CKAN Turns 20
Blog

Important patch releases for your CKAN site

Please upgrade to CKAN 2.8.12 and CKAN 2.9.7 to patch important vulnerabilities

03-oct2022-new-patch-releases-BLOG.png

We are happy to announce that the new patch releases for CKAN 2.9.x and 2.8.x are now available to download and install. Note that following our revised release policy, this will be the last patch release on the 2.8.x line.

These patch releases are particularly important to apply as they address a vulnerability in user registration (CVE-2022-43685), so users should upgrade as soon as possible to the latest patch release for the CKAN version they are using.

Patch release upgrades are very straight-forward and do not contain any backwards incompatible changes or involve any change in the database or Solr schema.

For more details, check the CHANGELOG for the relevant version:

In case of doubt don't hesitate to ask for help. To discuss security related issues please email security@ckan.org. Otherwise you can ask your questions in the Discussions or the Gitter channel. As stated in the release policy, the latest patch release is the only one officially supported. For details on how to upgrade, see the following links depending on your install method:
More posts
CKAN 2.12 featured image
In Category on 13 Jun 2026

CKAN 2.12 is coming: help us ship the best CKAN yet

CKAN 2.12 is the most significant release in years. The code is ready โ€” what it ships as depends on how many people test it, translate it, and review the docs over the coming weeks.

What CKAN Made Possible 2400x1260
In Category on 08 Jun 2026

What CKAN Made Possible: A Sixteen-Year Open Data Story

From NYCBigApps to federal metadata standards โ€” a co-founder's story of why CKAN's real value was never the portal

Connect with CKAN