SilverStripe Blog

SilverStripe 2.4.2 released

Posted by Sigurd Magnusson on 23 September 2010

We're pleased to announce SilverStripe 2.4.2, our second update to the 2.4 codebase. This is now our recommended version of SilverStripe CMS to use on production websites.

As always, we'd like to thank members of our community for helping out with this release, by contributing patches, filing bugs, and generally sticking around to help others - you guys rock!

Read the full post

SilverStripe 2.4.1 Update

Posted by on 23 July 2010

We're pleased to announce 2.4.1, our first update to the 2.4 codebase. You can check a full list of changes in our changelog, but here are some highlights:

  • Fixed a bug where logged-in CMS authors were allowed to rename files with harmful extensions in the "Files & Images" section
  • Improved installer security by disallowing re-installation when a configuration file is already present.
  • Installing in "live mode" instead of "dev mode" by default, and avoid setting certain domains as "dev mode" by default. This fixes an issue where attackers were able to force a site into "dev mode" by spoofing the domain name on certain server configurations.
  • Fixed password encryption when saving members through the "Add Member" dialog in the "Security" admin. The saving process was disregarding password encyrption and saving them as plaintext (issue was introduced in 2.4.0)
  • Fixed potential information disclosure on misconfigured servers by disallowing direct execution of *.php files in "sapphire", "cms" and "mysite" folders. If PHP was configured to show errors on screen (development setting), attackers could find out server paths and other environment information.
  • Allow CMS authors to set their own localized date and time formats, independently from the defaults set through their interface language.
  • More useable date picker (jQuery UI) for date form fields (both in the CMS and in website forms)
  • Better URL "transliteration" of special characters like Umlauts or Macrons (Example URL in German: "Brötchen für alle!", URL in 2.4.0: "brtchen-fr-alle", URL in 2.4.1: "broetchen-fuer-alle")
  • Better batch editing of comments in the admin interface (e.g. marking multiple comments as "spam")
  • More sophisticated access control for decorators on page types (tri-state permissions checks: allow, deny, ignore).
  • Added a Latvian translation of the CMS interface (thanks Kristaps and Andris!)

Mostly, however, 2.4.1 is a security release for vulnerabilities discovered recently and contains all enhancements and bugfixes since the 2.4.0 release. 

Read the full post

SilverStripe 2.4 release: a significant step forward

Posted by Brian Calhoun on 5 May 2010

Screenshot of SilverStripe 2.4We're excited to tell you that we just released SilverStripe version 2.4! This is a major new release and an important milestone for the SilverStripe community, the open source project, and our company.

SilverStripe 2.4 is the culmination of over a year's worth of development. We fixed 391 tickets and had over 1,400 changelog entries. A large number of the patches that went into 2.4 have come from you, the community, and we're especially happy that there's been increasing community involvement.

Read the full post

SilverStripe v2.4 progresses to release candidate 2

Posted by Sigurd Magnusson on 30 April 2010

We're excited to say we're extremely close to releasing a stable version of SilverStripe 2.4.

A month ago we released Release Candidate 1. Thanks to community feedback and continued testing, we're issuing an update today, SilverStripe 2.4 Release Candidate 2. A huge thank you to everyone who has taken the time to download and test this release and file bug reports.

Read the full post

SilverStripe v2.4 progresses to release candidate 1

Posted by Sigurd Magnusson on 1 April 2010

Today we've moved significantly closer to a final and stable version of SilverStripe v2.4. You can now download SilverStripe v2.4 Release Candidate 1, which fixes bugs and incorporates feedback from the community since our Beta releases.

We'd appreciate you testing this release, and seeing whether your existing sites upgrade smoothly to this version.Version 2.4 does represent a major version update, providing a number of new features needed to run larger and more complex websites. Whether you're needing to run on SilverStripe on another database, make use of nested URLs, or keen to take advantage of improved performance or wider unit-test coverage, there's something in this release that will help everyone who uses SilverStripe.

Now that we've reached Release Candidate 1, the features in SilverStripe 2.4 are finalised. We have described the major features in earlier posts, but you can look forward to hearing about them in much more depth as we head towards the final release.

Read the full post

SilverStripe 2.4 beta release brings hierarchical URLs, SQL Server support, and much more

Posted by Sigurd Magnusson on 5 February 2010

Screenshot of SilverStripe 2.4We're extremely excited to announce SilverStripe v2.4 is now at beta release stage!

This means it's ready for testing by our community. We've made a number of changes since the 2.4 alpha release in November, and we're continuing to polish the intended features in preparation for the stable version. We do not recommend using this version of SilverStripe for production sites yet unless extensive testing is done.

Read the full post

SilverStripe 2.3.5 released

Posted by Sigurd Magnusson on 22 January 2010

Yesterday we released an update to the SilverStripe CMS. As it fixes security vulnerabilities in our software, we recommend that production websites should upgrade to this version.

No API changes are generated in this release, so existing modules and websites should upgrade easily. Related to this release, we also issued a security update for the SilverStripe forum module.

Read the full post

SilverStripe 2.3.4 released

Posted by Sigurd Magnusson on 30 November 2009

SilverStripe v2.3.4 has just been released! This is now the best version of our software to use. This version solves a number of bugs, some of which relate to security vulnerabilities. Thanks go to community members who identified bugs and contributed fixes to them!

Download SilverStripe-v2.3.4.tar.gz

Read the full post

SilverStripe 2.4 alpha release brings hierachical URLs, SQL Server support, and much more

Posted by Sigurd Magnusson on 12 November 2009

Screenshot of SilverStripe 2.4We're extremely excited to announce SilverStripe v2.4 is now at alpha release stage!

This means it's ready for testing by our community while we continue to complete the intended features for the stable version, and complete our own testing. We do not recommend using this version of SilverStripe for production sites yet, unless you perform extensive testing on your own site first.

Read the full post

SilverStripe 2.3.3 released

Posted by Sigurd Magnusson on 6 August 2009

SilverStripe v2.3.3 has just been released! This is now the best version of our software to use. This version solves a number of bugs both at the code level for those working with Sapphire, and solves a few CMS interface bugs.

A big round of thanks go to community members who identified bugs and contributed fixes to them!

Read the full post

1 2 3 4

Want to know more about the company that brought you SilverStripe? Then check out SilverStripe.com

Comments on this website? Please give feedback.