SilverStripe 2.2.3 released - recommend hot fix
We have a new release of SilverStripe available: 2.2.3
- Download here: silverstripe-v2.2.3.tar.gz
- Post bug reports here: http://open.silverstripe.com
- Change log here: http://open.silverstripe.com/wiki/ChangeLog/2.2.3
IMPORTANT NOTE
This release of SilverStripe fixes an issue that came to the attention of the SilverStripe development team earlier today. It could potentially let malicious users bypass the CMS security. For this reason, we strongly recommend that you upgrade all of your sites.
If you would like to apply this fix manually, the relevant patch is available here:
http://open.silverstripe.com/changeset/64988/
http://open.silverstripe.com/changeset/64988/?format=diff&new=64988
Thanks,
Sam
8 Comments. Add Yours Tags: new release, silverstripe software
Post your comment
Comments
-
Just downloaded this version 2.2.3 and ran the online new install. Keep getting the error.....
Fatal error: Class 'Form' not found in /......./sapphire/security/Member.php on line 1054.
Tried running the install.php from both Firefox and IE with same Fatal Error.
Cannot continue. Any solutions available?Posted by Mauricio Vas - Ulysses Solutions Limited, 1 year ago
-
What, no publicity about this release, not I feel like a lucky stumbler who has got something before everyone else.
Posted by reuben, 1 year ago
-
Is this security fix also important for 2.2.2 user?
And if, is there someway to copy code without the line nr?
And with what do I open the .diff file.
Sorry for maybe stupid questions but I am really a newbie.
JPosted by Joakim, 1 year ago
-
Homepage has been updated.
@matt, please subscribe to official SilverStripe release announcements email at http://groups.google.com/group/silverstripe-announce to learn of new releases :)Posted by Sigurd Magnusson, 1 year ago
-
I see it on the download page, and it was announced on silverstripe-announce
Posted by Simon Welsh, 1 year ago
-
How come this isn't on the download page - and how come it wasn't announced on any of the mailing lists?
Posted by Matt Hardwick, 1 year ago
-
1 small update about i18n. I'll pass for 2.3 or further versions. Without well worked i18n it's useless for me =( But anyway thanks for security updates.
Posted by Aleksandr Sugard, 1 year ago
-
Hi Sam!
Maybe some users would be happy about this link:
http://doc.silverstripe.com/doku.php?id=upgrading
It's no big deal to find this doc, but it's always more comfortable to get an advise how to upgrade then having to search for it. So maybe you could add it to your blogpost.
Thanks for your hard work and greetings from Germany,
PeterPosted by ptr, 1 year ago
RSS feed for comments on this page | RSS feed for all comments
How do humans win?
Webstock is here! We've been in heads-down mode for a while, working on sites for councils, Air New Zealand, and American clients too. So now is the time to celebrate the local scene and be proud of Webstock!
SilverStripe Ltd Level 5, Symes de Silva House, 97–99 Courtenay Place, Wellington, New Zealand. Phone us: +64 4 978 7330. Paid Support available: +64 4 978 7333.
Looking for our Open Source Software? Then head to SilverStripe.org.
Comments on this website? Please give feedback.