Azure DevOps Blog

September patches for Azure DevOps Server and Team Foundation Server

Erin DormierSeptember 10, 2019Sep 10, 201909/10/19

This month, we are releasing fixes for security vulnerabilities that impact TFS 2015, TFS 2017, TFS 2018, and Azure DevOps Server 2019. CVE-2019-1305: cross site scripting (XSS) vulnerability in Repos CVE-2019-1306: remote code execution vulnerability in Wiki Here are the versions impacted: Azure DevOps Server 2019 Update 1 Patch 1 If y

Now available: Azure DevOps Server 2019 Update 1 RTW

Erin DormierAugust 20, 2019Aug 20, 201908/20/19

Today, we are announcing the availability of Azure DevOps Server 2019 Update 1. Azure DevOps Server brings the Azure DevOps experience to self-hosted environments. Customers with strict requirements for compliance can run Azure DevOps Server on-premises and have full control over the underlying infrastructure. This release includes a ton of n

August patches for Azure DevOps Server and Team Foundation Server

Erin DormierAugust 13, 2019Aug 13, 201908/13/19

For the August release, we are releasing patches for Azure DevOps Server 2019.0.1, TFS 2018 Update 3.2, and TFS 2017 Update 3.1. This month, there are no security fixes; these patches include functional changes. Azure DevOps Server 2019.0.1: We added information to service connections to clarify that they are authorized for all pipelines by d

July Security Release: Patches available for Azure DevOps Server and Team Foundation Server

Erin DormierJuly 9, 2019Jul 9, 201907/9/19

For the July security release, we are releasing fixes for vulnerabilities that impact Azure DevOps Server 2019, TFS 2018, TFS 2017, TFS 2015, TFS 2013, TFS 2012, and TFS 2010. Thanks to everyone who has been participating in our Azure DevOps Bounty Program. CVE-2019-1072: remote code execution vulnerability in work item tracking CVE-2019-107