TYPO3 6.2.24, 6.2.25, 7.6.8, 7.6.9, 8.1.1, and 8.1.2 Released

TYPO3 6.2.24, 6.2.25, 7.6.8, 7.6.9, 8.1.1, and 8.1.2 were released today. Versions 6.2.24, 7.6.8, and 8.1.1 fix a critical vulnerability that could lead to “information disclosure or remote code execution”. Versions 6.2.25, 7.6.9, and 8.1.1 fix a regression introduced with the fix for that security vulnerability.

More information is available in the release notes for 6.2.24, 6.2.25, 7.6.8, 7.6.9, 8.1.1, and 8.1.2.

Posted in Security Update, TYPO3 | Leave a comment

Magento 2.0.7 Released

Magento 2.0.7 was released yesterday. The new version fixes an incompatibility between Magento’s payment gateway and PHP 7.0.3.

More information is available in the release notes.

Posted in Magento | Leave a comment

concrete5 5.7.5.8 Released

concrete5 5.7.5.8 was released today. The new version includes bug fixes and includes support for additional languages.

More information is available in the release announcement.

Posted in concrete5 | Leave a comment

Moodle 3.1 Released

Moodle 3.1 was released today. The new version includes support for competencies, a recycling bin, and numerous smaller improvements.

The new version doesn’t increase the system requirements from what was required for 3.0 and other recent versions.

Upgrading to 3.1 can only be done from at least version 2.7, so that will mean those still using 2.6 or older will need to do an intermediate upgrade when upgrading to 3.1.

More information is available in the release notes.

Posted in Moodle | Leave a comment

MediaWiki 1.23.14, 1.25.6, and 1.26.3 Released

MediaWiki 1.23.14, 1.25.6, and 1.26.3 were released today. The new versions fix a number of security issues.

More information is available in the release announcement.

Posted in MediaWiki, Security Update | Leave a comment

Magento 2.0.6 Released

Magento 2.0.6 was released today. The new version includes a number of security fixes and the “ability to use Redis for session storage”.

More information is available in the release notes.

Posted in Magento, Security Update | Leave a comment

TYPO3 6.2.23 and 7.6.7 Released

TYPO3 6.2.23 and 7.6.7 were released today. The new versions are maintenance releases that only contain bugfixes.

More information is available in the release notes for 6.2.23 and 7.6.7.

Posted in TYPO3 | Leave a comment

Moodle 2.7.14, 2.8.12, 2.9.6, and 3.0.4 Released; Support Ends For Moodle 2.8

Moodle 2.7.14, 2.8.12, 2.9.6, and 3.0.4 were released today. All of the new version include security fixes. Details of the security vulnerabilities fixed will be released in a week. Versions 2.9.6 and 3.0.4 also include “small improvements” and bug fixes.

Update (May 17, 2016): Moodle has now released information on the security issue fixed in the releases. The vulnerabilities fixed include a vulnerability that allowed editing profile fields that were supposed to be locked.

Moodle 2.8.12 is the last release for the 2.8 branch and anyone running it should upgrade to a newer, supported, version.

More information is available in the release notes for 2.7.142.8.122.9.6, and 3.0.4.

Posted in Moodle, Security Update | Leave a comment

Zen Cart 1.5.5a Released

Zen Cart 1.5.5a was released last Thursday. The new version includes numerous bug fixes and fixes a privilege escalation vulnerability in the admin area.

More information is available in the release announcement.

Posted in Security Update, Zen Cart | Leave a comment

WordPress 4.5.2 Released

WordPress 4.5.2 was released today. The new version fixes a “SOME vulnerability” and a reflected cross-site (XSS) vulnerability in third-party libraries included with WordPress.

More information is available in the release notice and Codex document.

Posted in Security Update, WordPress | Leave a comment