[Yams-announce] Yams 0.5.7 - Security Fix Release
Brought to you by:
modred
Menu
▾
▴
[Yams-announce] Yams 0.5.7 - Security Fix Release
|
From: Garth S. <ga...@ap...> - 2000-01-15 16:41:02
|
Hi, This is an announcement of the release of version 0.5.7 of Yams. It primarily fixes a security hole. The changelog is below and the latest version can be downloaded from http://sourceforge.net/project/?group_id=64 0.5.7 - 15 Janaury 2000 * Fixed security hole where customer id was being stored as a hidden field in some order pages - it not longer does so. * Removed spurious database connect in Cart.pm * Fixed problem with wrong warning message being shown in Order.pm * Fixed problem with renewal of expired user who is still within grace period. * Address.pm, Order.pm and address.pl are the minimum files needed to be upgraded to fix the security hole. * Fixed some problems with improper quoting of department names. Garth |