We have just released a very important security update for the TeamSpeak 3 Client addressing a RFI (Remote File Inclusion) vulnerability. Please upgrade your desktop clients to version 3.0.18.1 immediately.
Here's the full changelog:
*** IMPORTANT ***
We strongly recommend that all server providers and admins change the minimum client version required to connect to the server. Use the following command via ServerQuery to do this:
If you have access to your servers database (SQLite or MySQL) you can use this SQL query to update all virtual servers at once:
You need to restart the server afterwards.
[SECURITY UPDATE] TeamSpeak 3 Client 3.0.18.1 is Available
Here's the full changelog:
Code:
=== Client Release 3.0.18.1 10 Oct 2015
! Hotfix release to fix security vulnerability
We strongly recommend that all server providers and admins change the minimum client version required to connect to the server. Use the following command via ServerQuery to do this:
Code:
login username password
use 0 // default settings for virtual servers you create in the future
serveredit virtualserver_min_client_version=1444491275
use port=9987 // repeat this for all existing virtual servers
serveredit virtualserver_min_client_version=1444491275
Code:
UPDATE server_properties SET value = '1444491275' WHERE ident = 'virtualserver_min_client_version';
