phpBB 2.0.13 released View previous topic :: View next topic  


NFOHump.com Forum Index - Site Feedback
Page 1 of 1
razor1394
VIP Member



Posts: 3571
Location: Sweden
PostPosted: Tue, 1st Mar 2005 14:08    Post subject: phpBB 2.0.13 released
phpBB 2.0.13 released

Quote:

Hi everyone,

phpBB Group announces the release of phpBB 2.0.13. This release addresses two recent security exploits, one of them critical. They were reported a few days after .12 was released and no one is more annoyed than us, having to release a new version in such a short period of time.

Fortunately both fixes are easy and in each case just one line needs to be edited.

The first issue is critical and we urge you to fix it on your forums as soon as possible:

Open includes/sessions.php

Find:

if( $sessiondata['autologinid'] == $auto_login_key )

Replace with:

if( $sessiondata['autologinid'] === $auto_login_key )

The second minor issue, reported to bugtraq several days ago, was the path disclosure bug in viewtopic.php. For further information on how to manually fix this bug please see our announcements forum at www.phpbb.com:

http://www.phpbb.com/phpBB/viewtopic.php?t=267563

As with all new releases we urge you to upgrade as soon as possible.

You can of course find this download available on our website at:

http://www.phpbb.com/downloads.php

As per usual three packages are available to simplify your upgrade.

----

To unsubscribe from this list visit http://www.phpbb.com/lists/?p=unsubscribe&uid=7b917f87afe69902d5b3b7b634977ebf

--
Powered by PHPlist, www.phplist.com --



Very Happy
Back to top
Page 1 of 1 All times are GMT + 1 Hour
NFOHump.com Forum Index - Site Feedback
Signature/Avatar nuking: none (can be changed in your profile)  


Display posts from previous:   

Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB 2.0.8 © 2001, 2002 phpBB Group