WordPress 4.0.1 Released

WordPress 4.0.1 was released today. The new version fixes several security vulnerabilities, including a “cross-site scripting issues that a contributor or author could use to compromise a site”, and includes additional security hardening. The new version also fixes a number of bugs.

For those still running WordPress 3.7, 3.8, and 3.9 new versions, 3.7.5 3.8.5, and 3.9.3 respectively, have been released that contain the same security fixes as  4.0.1 as well as a fix for a critical cross-site scripting (XSS) vulnerability that does not exist in 4.0.

More information is available in the release notice and Codex document.

 

Posted in Security Update, Uncategorized | Leave a comment

Piwik 2.9.1 Released

Piwik 2.9.1 was released today. The new version fixes a number of issues found in the previous version.

More information is available in the changelog.

Posted in Piwik | Leave a comment

Drupal 6.34 and 7.34 Released

Drupal 6.34 and 7.34 were release today. The new versions only include security fixes. Both versions include a fix for a session hijacking vulnerability and 7.34 also includes a fix for a denial of service vulnerability.

More information is available in the security advisory for the releases.

Posted in Drupal, Security Update | Leave a comment

Support Ends for Joomla 3.2

Support for Joomla 3.2 has now ended. Anyone one still using version 3.2 should upgrade to 3.3. Keep in mind that Joomla 3.3 requires at least PHP version 5.3.10, up from version 5.3.1 in Joomla 3.2.

Posted in End of Support, Joomla | Leave a comment

Concrete5 5.7.2.1 Released

Concrete5 5.7.2.1 was released yesterday. The new version includes several new features and bug fixes.

More information is available in the release notes.

 

Posted in concrete5 | Leave a comment

Moodle 2.8.1 Released

Moodle 2.8.1 was released today. The new fixes a serious regression introduced in Moodle 2.8 and also includes several other fixes.

More information is available in the release notes for 2.8.1.

Posted in Moodle | Leave a comment

Piwik 2.9.0 Released

Piwik 2.9.0 was released today. The version includes improvements in “reliability and stability”.

The upgrade includes a major database upgrade, so plan accordingly.

More information is available in the changelog.

 

Posted in Piwik | Leave a comment

Moodle 2.5.9, 2.6.6, 2.7.3, and 2.8 Released; Support Ends For Moodle 2.5

Moodle 2.5.9, 2.6.6, 2.7.3, and 2.8 were released yesterday. Version 2.8 introduces “significant improvements to the gradebook, forums, analytics and usability in many areas to empower teachers and improve functionality for everyone across all devices”. Versions 2.6.6 and 2.7.3 include “small improvements”, bug fixes, and security fixes. Version 2.5.9 includes security fixes. Details of the security vulnerabilities fixed will be released later.

Update (November 17, 2014): Moodle has now released information on the security issues fixed in the releases. Among the vulnerabilities fixed is a serious cross-scripting (XSS) vulnerability in all three versions and a serious cross-site request forgery (CSRF) vulnerability in the LTI module in all three versions.

Moodle 2.5.9 is the last release for the 2.5 branch and anyone running it should upgrade to a newer, supported, version.

More information is available in the release notes for 2.5.92.6.62.7.3, and 2.8.

Posted in End of Support, Moodle, Security Update | Leave a comment

Support Ends for TYPO3 4.7 and 6.1

The end of support for TYPO3 4.7 and 6.1 has been announced. For those still running those versions it is recommended that they upgrade to TYPO3 6.2, which is scheduled to be supported until March of 2017.

Support for TYPO3 4.5 continues until March of next year .

Posted in End of Support, TYPO3 | Leave a comment

Drupal 7.33 Released

Drupal 7.33 was released today. The new version fixes numerous bugs and also includes “small API/feature improvements”.

More information is available in the release notes.

Posted in Drupal | Leave a comment