Forums, Blogs, Wikis

Looks like it’s primarily a bug fix.

From the SMF Forums.

In this release, a few small security issues have been addressed. Also, a few bugs that were found have been fixed.

We urge all users to upgrade to SMF 1.1.3 as soon as possible to take advantage of these fixes. A summary of the fixes is as follows:

• Sending newsletters could cause a timeout on large boards.
• Reporting a personal message needed some more sanitation.
• Session fixation could, in rare cases, be applied - reported by David Vieira-Kurz.
• Prevent recursive functions from causing a stack overflow in PHP - reported by Stefan Esser.
• Fixed a bug causing some expressions to trigger an error in UTF-8 mode.
• Quick edit wasn’t updating the subject correctly if it was the first message.
• The package manager could in rare cases get itself into a loop.
• Characters weren’t properly escaped in [html] parts of the signature
• Quick edit didn’t check whether a topic was being locked

More information is available on the Simple Machines Forum forum.

Question, Comments...

Do you have more questions. Please either leave a comment below or join us in our new forum.

Tags: forum, News, releases, security, SMF

This entry was posted on Monday, June 25th, 2007 at 8:54 pm and is filed under SMF. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.