Article Updated: 2026 January 26th
Mandatory Security Update for Xerox® DocuShare®
- Mandatory Security Update for Xerox DocuShare 7.0 – Update 1 Patch 3 Hot Fix 39
-
Mandatory Security Update for Xerox DocuShare 7.5 – Patch 2 Hot Fix 9
- https://docushare.xerox.com/doug/dsweb/View/Collection-18502
- Note 1: ds750p2 is not compatible with previous versions of the following Add-On's - docusign, DocViewer, FTP, and LCM. Apply the latest versions of these add-ons if the older versions were in use. This is due to the log4j v1 to log4j v2 upgrade, multiple modules are affected.
- Note 2: Patch 2 Hot Fix 4 (which is a prerequisite for Patch 2 Hot Fix 9) included Tomcat 9.0.76. Customers need to re-apply the latest Tomcat patch after HF9.
- Mandatory Security Update for Xerox DocuShare 7.6 – Patch 6 Hot Fix 13
- Mandatory Security Update for Xerox DocuShare 7.7 – Patch 3 Hot Fix 1
- Mandatory Security Update for Xerox DocuShare 8.0 – Patch 1 Hot Fix 2
Additional Note for DocuShare® 7.6
DocuShare 7.6 Patch 8
- located here https://docushare.xerox.com/doug/dsweb/View/Collection-20018
- adds Support for Secure Email Integration with Microsoft 365 (see release notes for additional information)
- NOTE: Given there are critical security issues that were resolved in 7.6p6HF13, it is strongly recommended that you install this patch/hotfix before upgrading to 7.6p8. See the 7.6p6HF13 release notes for more information.
There are four cases identified:
Case 1: customer with patch before ds760p6 (no patch, patch 1 to patch 5)
- Apply ds760p6 → ds760p6hf13 → ds760p8 → ds760p8hf1
Case 2: customer with ds760p6
- Apply ds760p6hf13 → ds760p8 → ds760p8hf1
Case 3: customer with patch ds760p7
- Do not go back to ds760p6
- Apply ds760p8 → ds760p8hf1
Case 4: customer with patch ds760p8
- Do not go back to ds760p6
- Apply ds760p8hf1