OXID eShop version 6.2.5
Main changes:
- Security improvements concerning:
- input parsing in Smarty plugins – many thanks to Dr. Dominic Breuker @it.sec!!
- template names
- vulnerability in jQuery library
- More libraries updated to secure versions
Compilation
- OXID CE component 6.7.2 (was 6.7.0 )
- OXID PE component 6.4.1 (was 6.4.1)
- OXID EE component 6.5.5 (was 6.5.5)
- Theme “Flow” 3.7.2 (was 3.7.0 )
- Theme “Wave” 1.6.1 (was 1.6.0 )
- Amazon Pay 3.6.8 (was 3.6.8)
- GDPR Opt-In 2.3.3 (was 2.3.2 )
- Klarna 5.5.1 (was 5.5.0 )
- Paymorrow 2.1.0 (was 2.0.3 )
- PAYONE 1.5.0 (was 1.3.1 )
- PayPal 6.3.1 (was 6.2.2 )
- WYSIWYG Editor + Mediathek 2.4.0 (was 2.4.0)
- Visual CMS for PE/EE 3.5.3 (was 3.5.3)
- OXID Cookie Management powered by usercentrics 1.1.3 (was 1.1.2 )
- Demo data installer 1.2.0 (was 1.1.3 )
- OXID eShop composer plugin 5.2.0 (was 5.1.0 )
- OXID eShop facts 2.4.0 (was 2.3.2 )
- Unified Namespace Generator 2.2.0 (was 2.1.0 )
You might find information about deprecated code in the linked changelogs. To find out what to use on behalf, please use the deprecated list in source code documentation.
System requirements, update and installation
- PHP support:
- tested on PHP v7.1, v7.2, v7.3 and v7.4
- Database support:
- tested on MySQL 5.5 and 5.7 works on MySQL 5.6 as well (If you use the OXID eShop Enterprise Edition there might be a pitfall: please see this blog post for more details: Set MySQL 5.6 optimizer setting “block_nested_loop = off” for OXID eShop Enterprise Edition)
- tested on MariaDB v10.4
- Web server support:
- tested on Apache 2.2 and 2.4
- Composer 1 and 2 are supported
Fixed bugs
A list of fixed bugs in this compilation:
More resources
Credits
Many thanks to your merge requests released with this patch!
- SeifertDaniel for
- PR-857 (fix reset of oxcreate date when saving order remark)
Leave a Reply
Want to join the discussion?Feel free to contribute!