Jump to content
xisto Community
HoRuS

Phpbb 2.0.12 released

Recommended Posts

Today I got this message in my inbox:

I wanted to share it with you all ;)


Hi everyone,


phpBB Group announces the release of phpBB 2.0.12. This release

addresses a couple of potential exploits and fixes a number of issues

involving path disclosures, etc. It also introduces a new ACP based

version check (language package maintainers please note the

additional localisation required for this). For further information

please see our announcements forum at phpBB.com:


https://www.phpbb.com/community/viewtopic.php?t=265423


As with all new releases we urge you to upgrade as soon as possible.

You can of course find this download available on our website at:


https://www.phpbb.com/downloads/


As per usual three packages are available to simplify your upgrade.

Upgrade information using the mod template should be available

shortly (for those who prefer this method).


--Powered by PHPlist, https://www.phplist.com/ --

Share this post


Link to post
Share on other sites

I didn't until I read this, and for somereason, when I go to choose which server to download it from, it won't let me... says the file cant be found! ;)

Share this post


Link to post
Share on other sites

It's difficult to install MODS and to maintain PHPBB. Before, I really like PHPBB. Now when I found out SimpleMachines (http://www.simplemachines.org/) it's really easy to install a MOD (GUI). I'm sure that you are going to love it. Check out their site. Check out the number of online users... It's really famous.

Share this post


Link to post
Share on other sites

for somereason, when I go to choose which server to download it from, it won't let me... says the file cant be found! ;)

53624[/snapback]

The servers are outta sync. I think the only one working is sydney Australia.

Share this post


Link to post
Share on other sites

Errrr is phpBB in a rush?

Today I got another mail...

phpBB 2.0.13 released:

 

Hi everyone,

phpBB Group announces the release of phpBB 2.0.13. This release addresses two

recent security exploits, one of them critical. They were reported a few days

after .12 was released and no one is more annoyed than us, having to release a

new version in such a short period of time.

Fortunately both fixes are easy and in each case just one line needs to be

edited.

The first issue is critical and we urge you to fix it on your forums as soon as

possible:

Open includes/sessions.php

Find:

if( $sessiondata['autologinid'] == $auto_login_key )

Replace with:

if( $sessiondata['autologinid'] === $auto_login_key )

The second minor issue, reported to bugtraq several days ago, was the path

disclosure bug in viewtopic.php. For further information on how to manually fix

this bug please see our announcements forum at https://www.phpbb.com/:

https://www.phpbb.com/community/viewtopic.php?t=267563

As with all new releases we urge you to upgrade as soon as possible.

You can of course find this download available on our website at:

https://www.phpbb.com/downloads/

Note: The Downloadmirror in Belgium works... The rest the need to resync.

As per usual three packages are available to simplify your upgrade.

 

Peace

Share this post


Link to post
Share on other sites

Errrr is phpBB in a rush?

Today I got another mail...

phpBB 2.0.13 released:

 

Hi everyone,

phpBB Group announces the release of phpBB 2.0.13. This release addresses two

recent security exploits, one of them critical. They were reported a few days

after .12 was released and no one is more annoyed than us, having to release a

new version in such a short period of time.

Fortunately both fixes are easy and in each case just one line needs to be

edited.

The first issue is critical and we urge you to fix it on your forums as soon as

possible:

Open includes/sessions.php

Find:

if( $sessiondata['autologinid'] == $auto_login_key )

Replace with:

if( $sessiondata['autologinid'] === $auto_login_key )

The second minor issue, reported to bugtraq several days ago, was the path

disclosure bug in viewtopic.php. For further information on how to manually fix

this bug please see our announcements forum at https://www.phpbb.com/:

https://www.phpbb.com/community/viewtopic.php?t=267563

As with all new releases we urge you to upgrade as soon as possible.

You can of course find this download available on our website at:

https://www.phpbb.com/downloads/

Note: The Downloadmirror in Belgium works... The rest the need to resync.

As per usual three packages are available to simplify your upgrade.

 

Peace

54803[/snapback]

well maybe they are really active these days and always looking for defects in the phpbb system and releasing various critical updates. well it seems that the phpbb gourp still has a lot to do in terms of securing it's system. even though it is true...it is still my favorite!

Share this post


Link to post
Share on other sites

well maybe they are really active these days and always looking for defects in the phpbb system and releasing various critical updates. well it seems that the phpbb gourp still has a lot to do in terms of securing it's system. even though it is true...it is still my favorite!

55095[/snapback]


Yea same here... But your right about the security thing :D

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...

Important Information

Terms of Use | Privacy Policy | Guidelines | We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.