PrestaShop 1.4.11.1 and 1.5.6.3 Released

PrestaShop 1.4.11.1 and 1.5.6.3 were released yesterday. The new version fix a security issue related to password generation that existed in previous version of 1.4 an 1.5. They also include several bug fixes.

The security issues can also be resolved by installing the new Security Patch module, which also will fix the issue for those still running 1.6.0.x (1.6.1 is not impacted by the security issue).

More information is available in the release announcement and changelogs for 1.4.11.1 and 1.5.6.3.

 

Posted in PrestaShop, Security Update | Leave a comment

Piwik 2.14.2 Released

Piwik 2.14.2 was released on Friday. The new version fixes issues introduced in version 2.14.0 and includes some “small improvements”.

More information is available in the changelog.

Posted in Piwik | Leave a comment

WordPress 4.2.3 Released

WordPress 4.2.3 was released today. The new version fixes two security issues, a “cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site” and “issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft”.  The new version also includes a number of bug fixes.

For those still running WordPress 3.7, 3.8, 3.9, 4.0, and 4.1; new versions, 3.7.9, 3.8.9, 3.9.7, 4.0.6, and 4.1.6 respectively, have been released that contain the security fixes as 4.2.3.

More information is available in the release notice and Codex document.

 

Posted in Security Update, WordPress | Leave a comment

Piwik 2.14.1 Released

Piwik 2.14.1 was released yesterday. The new version fixes issues introduced in version 2.14.0 and includes some “small improvements”.

 

More information is available in the changelog.

 

Posted in Piwik | Leave a comment

Piwik 2.14.0 Released

Piwik 2.14.0 was released today. The new version includes UI changes, bug fixes, and security fixes. The security issues fixed include cross-site scripting (XSS) vulnerabilities, cross-site request forgery (CSRF) vulnerabilities, and a “possible” remote code execution vulnerability.

More information is available in the changelog.

Posted in Piwik, Security Update | Leave a comment

Magento 1.9.2.0 Released

Magento 1.9.2.0 was released today. The new version includes bug fixes, new versions of included libraries, minor improvements, and security fixes.

Along side the new version a security patch for older versions, SUPEE-6285, that “provides protection against several types of security-related issues, including information leaks, request forgeries, and cross-site scripting” was also released.

More information is available in the release notes.

 

Posted in Magento, Security Update | Leave a comment

Moodle 2.7.9, 2.8.7, and 2.9.1 Released

Moodle 2.7.9, 2.8.7, and 2.9.1 were released today. The new versions include “small improvements”, bug fixes, and security fixes. Details of the security vulnerabilities fixed will be released later. For those using a YouTube repository additional setup will be needed after upgrading to 2.8.7 or 2.9.1.

Update (July 13, 2015): Moodle has now released information on the security issue fixed in the releases. Among the vulnerabilities fixed is a possible cross-site scripting (XSS) vulnerability and an open redirect vulnerability.

More information is available in the release notes for 2.7.92.8.7, and 2.9.1.

Posted in Moodle, Security Update | Leave a comment

PrestaShop 1.6.1.0 Released

PrestaShop 1.6.1.0 was released yesterday. The version includes a new look for the back office, performance improvements, easier handling of EU regulations, tax improvements, other minor improvements, and bug fixes.

More information is available in the release announcement and changelog.

Posted in PrestaShop | Leave a comment

Joomla 3.4.3 Released

Joomla 3.4.3 was released yesterday. The new version includes fixes for several issues introduced in 3.4.2.

More information is available in the release announcement.

 

Posted in Joomla | Leave a comment

TYPO3 6.2.14 and 7.3.1 Released

TYPO3 6.2.14 and 7.3.1 were released today. The new versions include bug fixes and fixes for several “low severity” security issues.

More information is available in the release notes for 6.2.1.4 and 7.3.1.

 

Posted in Security Update, TYPO3 | Leave a comment