- Messaggi
- 12,206
- Reazioni
- 22
- Punteggio
- 38
- Località
- Candeglia (PT) 150m s.l.m.
- Sito web
- meteopistoia.it
Carissimi,
la Simple Machines ha rilasciato un aggiornamento di sicurezza critico per SMF 2.0.x e 1.1.x, portandole alle versioni 2.0.9 e 1.1.20.
Alcuni problemi di sicurezza sono stati individuati e corretti, consigliano quindi di aggiornare quanto prima!
Lo faro' stasera, presumibilmente tra le 23.30 e 0.00.
In quella fascia orario il forum potrebbe diventare irraggiungibile.
L'aggiornamento durera' pochi minuti.
A presto!
Ecco il changelog della nuova versione:
SMF 2.0.9 October 1 2014
===============================================================================
September 2014
-------------------------------------------------------------------------------
! SMF tries to stick ORDER BY NULL onto INSERT IGNORE queries containing sub-selects with a GROUP BY statement, causing a database error (Reported by guest)
! "Show Results" button always shown for polls as long as you can vote in them (Reported by Chainy)
! Multi-select boxes for settings were broken when no value had been selected (Reported by Suki)
! Some mail providers screw up the activation link (Reported by NanoSector)
! PHP 5.4 changes default charset to UTF-8, which can cause problems with search results and PM notification emails (Reported by fun4us)
! Make sure opcode cache gets cleared when regular cache does
! Log pruning should only delete closed mod reports, not open ones
! Fix layout issue with manage permissions page (Reported by Antes)
! Adjust image check to not fail on "cellTextIsHtml", unless paranoid... (Reported by Arantor)
! Sanitize all package XML to prevent any XSS attacks (Reported by Arantor)
! Add session check when previewing posts to prevent XSS via
la Simple Machines ha rilasciato un aggiornamento di sicurezza critico per SMF 2.0.x e 1.1.x, portandole alle versioni 2.0.9 e 1.1.20.
Alcuni problemi di sicurezza sono stati individuati e corretti, consigliano quindi di aggiornare quanto prima!
Lo faro' stasera, presumibilmente tra le 23.30 e 0.00.
In quella fascia orario il forum potrebbe diventare irraggiungibile.
L'aggiornamento durera' pochi minuti.
A presto!
Ecco il changelog della nuova versione:
SMF 2.0.9 October 1 2014
===============================================================================
September 2014
-------------------------------------------------------------------------------
! SMF tries to stick ORDER BY NULL onto INSERT IGNORE queries containing sub-selects with a GROUP BY statement, causing a database error (Reported by guest)
! "Show Results" button always shown for polls as long as you can vote in them (Reported by Chainy)
! Multi-select boxes for settings were broken when no value had been selected (Reported by Suki)
! Some mail providers screw up the activation link (Reported by NanoSector)
! PHP 5.4 changes default charset to UTF-8, which can cause problems with search results and PM notification emails (Reported by fun4us)
! Make sure opcode cache gets cleared when regular cache does
! Log pruning should only delete closed mod reports, not open ones
! Fix layout issue with manage permissions page (Reported by Antes)
! Adjust image check to not fail on "cellTextIsHtml", unless paranoid... (Reported by Arantor)
! Sanitize all package XML to prevent any XSS attacks (Reported by Arantor)
! Add session check when previewing posts to prevent XSS via
HTML:
from forged forms (Reported by emanuele)
! Sanitize maintenance mode title to prevent XSS attacks if HTML is used in it (Reported by guest)
