Rocket.Chat Security and Versioning Guidelines Inquiry

Description

I understand that keeping Rocket.Chat updated to the latest version is crucial for security. However, I currently have an environment using Rocket.Chat version 6.5.9.

• Does version 6.5.9 address known vulnerabilities?
  https://docs.rocket.chat/docs/rocketchat-security-fixes-updates-and-advisories
• Is there any documentation detailing the release process or rules for version numbering in Rocket.Chat? I tried searching for it but couldn’t locate the relevant information.

Thank you in advance!

Server Setup Information

• Version of Rocket.Chat Server: 6.5.9
• Operating System: Rocky Linux 9.2
• NodeJS Version: 14.21.3
• MongoDB Version: 5.0.18

I understand that keeping Rocket.Chat updated to the latest version is crucial for security.

Exactly that. Ignore it at your peril.

You will not get any help for your version. EOL June 2024.

Upgrade. Now.

And yes, there are almost certainly vulnerabilities in your version which are patched in later versions.

Upgrade. NOW.

https://docs.rocket.chat/docs/version-durability

There is plenty of information on release scheduling which has been the same for years.

You just haven’t looked very hard.

Point release every month around the 1st.

Major release as they feel like it.

6 months of support per release.

Release info here.

If you have further questions please ask once you have upgraded.