OXID Community Forum

> OXID Announcements > OXID Announcements > OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix
Login
FAQ Members List Calendar Search Today's Posts Mark Forums Read

Thread: OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix


Reply
 
Thread Tools Search this Thread Display Modes
#Top   #1  
Old 06-13-2016, 01:23 PM
Marco Steinhaeuser's Avatar
Marco Steinhaeuser Marco Steinhaeuser is offline
Community Manager @OXID
Join Date: Oct 2008
Posts: 12,669
Marco Steinhaeuser is on a distinguished road
Default OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix

Hi everybody,

today, OXID eShop versions 4.8.12 and 5.1.12 as well as 4.9.9 and 5.2.9 were published. They contain an important fix for a very certain security issue CVE-2016-5072. Please update your installation as soon as possible!

Please find the release notes here:
http://oxidforge.org/en/oxid-eshop-v...5-1-12-ee.html
http://oxidforge.org/en/oxid-eshop-v...-5-2-9-ee.html

Security Bulletin:
http://oxidforge.org/en/security-bulletin-2016-001.html

FAQ:
http://oxidforge.org/en/faq-security...-2016-001.html

Regards!
__________________
Marco
http://oxidforge.org
http://about.me/marco.steinhaeuser

Will ignore unsolicited support requests via PM, email or IM.
Reply With Quote
#Top   #2  
Old 06-15-2016, 09:12 AM
jayee jayee is offline
Junior Member
Join Date: Jul 2015
Posts: 14
jayee is on a distinguished road
Default Re: OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix

Hi Marco,

I just implemented the patch from 4.8.0 to 4.8.12 for a quick solution. I then tried to download the cummulative package from 4.8.12 to 4.9.9 in order to have a look at the necessary changes for running an upgrade. Unfortunately it was not possible to download any version from 4.8.10 onwards to 4.9.9. Instead the error message "The requested package was not found." was shown.
Could you please tell me if there will be a cummulative package from 4.8.12 to 4.9.9 or 4.10 in future.

Thanks
Regards
Jay

Last edited by jayee; 06-15-2016 at 09:17 AM.
Reply With Quote
#Top   #3  
Old 06-15-2016, 10:49 AM
Marco Steinhaeuser's Avatar
Marco Steinhaeuser Marco Steinhaeuser is offline
Community Manager @OXID
Join Date: Oct 2008
Posts: 12,669
Marco Steinhaeuser is on a distinguished road
Default Re: OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix

Hey Jay,

yes, there will be cumulative packages most likely by the end of this week. Thanks for reporting it. Apparently there was a configuration problem in our CI.

Cheers!
__________________
Marco
http://oxidforge.org
http://about.me/marco.steinhaeuser

Will ignore unsolicited support requests via PM, email or IM.
Reply With Quote
#Top   #4  
Old 06-15-2016, 03:18 PM
jayee jayee is offline
Junior Member
Join Date: Jul 2015
Posts: 14
jayee is on a distinguished road
Default Re: OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix

That's great, thx!
Reply With Quote
#Top   #5  
Old 06-15-2016, 06:11 PM
Earlybird's Avatar
Earlybird Earlybird is offline
Senior Member
Join Date: Dec 2009
Posts: 578
Earlybird is on a distinguished road
Default AW: OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix

None of the mentioned versions (no update no full version) can be downloaded at present ?
Reply With Quote
#Top   #6  
Old 06-15-2016, 06:13 PM
vanilla thunder's Avatar
vanilla thunder vanilla thunder is online now
Marco's Sidekick
Join Date: Nov 2010
Posts: 6,370
vanilla thunder is on a distinguished road
Default AW: OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix

you can get full version from github
Reply With Quote
#Top   #7  
Old 06-15-2016, 07:50 PM
Earlybird's Avatar
Earlybird Earlybird is offline
Senior Member
Join Date: Dec 2009
Posts: 578
Earlybird is on a distinguished road
Default AW: OXID eShop versions 4.8.12/5.1.12 & 4.9.9/5.2.9 published containing a security fix

Noted but please provide links where these fixed versions can be downloaded.
Reply With Quote
Reply

Bookmarks

Tags
eshop, fix, published, security, versions

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Nicht Sichtbar
Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
[URGENT] Information about a critical security issue in OXID eShop (all versions) Marco Steinhaeuser OXID Announcements 0 06-13-2016 05:13 AM
OXID eShop versions 4.7.11, 4.8.4, 5.0.11 and 5.1.4 published Marco Steinhaeuser OXID Announcements 14 03-28-2014 08:21 PM
OXID eShop versions 4.8.3 and 5.1.3 published Marco Steinhaeuser OXID Announcements 9 02-25-2014 03:22 PM
OXID eShop versions 5.0.3 and 4.7.3 released Marco Steinhaeuser OXID Announcements 0 01-30-2013 03:54 PM
Patch 4.4.2 of OXID eShop is published containing a security fix Marco Steinhaeuser OXID Announcements 0 08-25-2010 10:49 AM

All times are GMT +1. The time now is 10:16 PM.