[typo] Typo 5.0.4 beta 2 is out, fixes a critical security vulnerability

Michel R Vaillancourt michel at jkl5group.com
Tue Jul 1 12:05:21 EDT 2008


de Villamil Frédéric wrote:
> Michael Morin has discovered a critical vulnerability in Typo priori 
> to release 5.0.4.98.1 which may lead to arbitrary code execution and 
> privilege escalation on Typo blogs. Even though 5.0.4b1 was released 
> yesterday, this vulnerability is critical enough to make us release 
> 5.0.4b2 today.
    Hello, Frédéric!  For those of us who are relatively new to Typo, is 
there a "best practice" for upgrading an existing Typo-based blog?

-- 

	--Michel R Vaillancourt
	JKL-5 Telephony Services
	"The center of your telephony service needs"

	Phone:	+1.514.907.9429
	eMail:	support at jkl5group.com
	World Wide Web:	http://www.jkl5group.com/support



More information about the Typo-list mailing list