Sida 1 av 1

phpBB 2.0.16 har släppts!

Postat: 2005-06-28 08:24
av Holger
Updaten korrigerar ett antal säkerhets-risker

Viktigaste delen (bland andra):
Öppna viewtopic.php
Hitta

Kod: Markera allt

$message = str_replace('\"', '"', substr(@preg_replace('#(\>(((?>([^><]+|(?R)))*)\<))#se', "@preg_replace('#\b(" . str_replace('\\', '\\\\', $highlight_match) . ")\b#i', '<span style=\"color:#" . $theme['fontcolor3'] . "\"><b>\\\\1</b></span>', '\\0')", '>' . $message . '<'), 1, -1));
Ersätt med

Kod: Markera allt

$message = str_replace('\"', '"', substr(@preg_replace('#(\>(((?>([^><]+|(?R)))*)\<))#se', "@preg_replace('#\b(" . str_replace('\\', '\\\\', addslashes($highlight_match)) . ")\b#i', '<span style=\"color:#" . $theme['fontcolor3'] . "\"><b>\\\\1</b></span>', '\\0')", '>' . $message . '<'), 1, -1));
Övriga ändringar i sammanfattning:
- Fixed critical issue with highlighting - Discovered and fix provided by Ron van Daal
- Url descriptions able to be wrapped over more than one line again
- Fixed bug with eAccelerator in admin_ug_auth.php
- Check new_forum_id for existence in modcp.php - alessnet
- Prevent uploading avatars with no dimensions - Xpert
- Fixed bug in usercp_register.php, forcing avatar file removal without updating avatar informations within the database - HenkPoley
- Fixed bug in admin re-authentication redirect for servers not having index.php as one of their default files set

Hela beskrivningen finns här:
http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=302011

Instruktioner för manuell uppdatering:
http://www.phpbb.com/phpBB/viewtopic.php?t=301712
http://www.opentools.de/files/phpbb_2015_to_2016.zip

Glöm ej att köra databas-skriptet "update_to_latest.php"!