| ||||||||||
Shopping cart software Solutions for online shops and malls | ||||||||||
|
#41
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
To clarify, if applied manually, do the changes listed in the .diff files work correctly or not? Are the issues people are seeing patching/installation issues, or are they issues with the code changes themselves?
__________________
X-Cart Gold v4.1.10 [unix] AOM, Special Offers, CDSEO Pro, Remember Anon Carts, Back-In-Stock Notifications, MM3, Feed Manager |
|||||||
#42
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
If you want to patch it manually pulling the changes out of the diff file or the new versions of the files they issued first it will work. Not sure what affect the changes have on the cart....
__________________
Padraic Ryan Ryan Design Studio Professional E-Commerce Development |
|||||||
#43
|
|||||||
|
|||||||
Problems applying new "security-patch-2007-10-29.tgz"
I recieved advise from the Qualiteam advising to apply the above patch to overcome a sql threat.
I am running 4.1.8 and downloaed the 4.1.8 upgrade patch. I seem to only have a few of teh files on my system compared to what is in the patch. Can some one assist? Below are the files in the patch - and the files I have or are missing HTML Code:
Am I missing something really obvious here? I have done a file serach of the whole website?
__________________
Version 4.7.7 |
|||||||
#44
|
|||||||
|
|||||||
Re: Problems applying new "security-patch-2007-10-29.tgz"
Quote:
zebu, no need to start a new thread. yes, it's obvious. the other files that you don't have are related to x-rma (RMA), or x-affiliate (banner_stats.php and referrer_sales.php), or x-something or another... no worries... just patch what you have.
__________________
xcart 4.5.4 gold+ w/x-payments 1.0.6; xcart gold 4.4.4 |
|||||||
#45
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
IMHO The patch should look to see if those addons are installed.
If they are not ........... it should not attempt to patch files that are not there!! Basic programming. |
|||||||
#46
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
Does this security patch, which I've already applied to my 4.0.17 shop, need to be re-applied after upgrading to 4.0.19 or do the upgrade kits already incorporate this patch?
I'm planning to move my shop to the 4.1 branch so the same question will apply when the upgrades are complete through 4.1.8. 4.0.17 X-Cart Gold, running on Linux.
__________________
J McCune Porter | twinoakshammocks.com X-Cart Gold version 4.7.11, unix server X-Cart reBOOT Template by X-Cart Mods |
|||||||
#47
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
Considering this patch did not exist when the 4.0.19 upgrade was created, you can assume that 4.0.19 needs the patch again.
And if you read the docs, if your store is not 4.1.9 or later, you need the patch. If you're going to upgrade to 4.1.x, may as well go all the way to 4.1.9 -- no reason to stop at a lower rev.
__________________
xcart 4.5.4 gold+ w/x-payments 1.0.6; xcart gold 4.4.4 |
|||||||
#48
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
This is the main thing because I suggest a mod MOD manager...
__________________
Xcart in Spain 4.1.9 |
|||||||
#49
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
Quote:
If the answer is "No", can somebody from X-Cart give us an ETA?
__________________
X-Cart version 4.0.17 X-Cart version 4.0.18 Web servers = Apache OS = Linux |
|||||||
#50
|
|||||||
|
|||||||
Re: security-patch-2007-10-29.tgz
It's easy to edit the diff to your store... if you don't have x-affil, look for:
diff -ru ../xcart_orig/include/referred_sales.php ./include/referred_sales.php and cut this line and everything after, through Only in ./include/func: func.db.php.rej etc... HOWEVER -- I MUST WARN THE FORUM PARTICIPANTS: Your 4.1.8 store may not need any changes! I did a compare on the files in the patch, and my 4.1.8 files were identical to the patch... How can that be?
__________________
xcart 4.5.4 gold+ w/x-payments 1.0.6; xcart gold 4.4.4 |
|||||||
|
|||
X-Cart forums © 2001-2020
|