Joomla! 3.6.5 Released
Joomla! 3.6.5 is now available. This is a security release for the 3.x series of Joomla! which addresses three security vulnerabilities, miscellaneous security hardening and three bug fixes; no further changes have been made compared to the Joomla! 3.6.4 release. We strongly recommend that you update your sites.
What's in 3.6.5
Version 3.6.5 is released to address three security issues, miscellaneous security hardening and three bugs.
Security Issues Fixed
- High Priority - Core - Elevated Privileges (affecting Joomla! 1.6.0 through 3.6.4) More information »
- Low Priority - Core - Shell Upload (affecting Joomla! 3.0.0 through 3.6.4) More information »
- Low Priority - Core - Information Disclosure (affecting Joomla! 3.0.0 through 3.6.4) More information »
- Security Hardening More information »
- [#12817] Fix Joomla Updater for Windows Users
- [#12984] Fix installation language for sr-YU
- [#12589] and [#13127] Fix default values for user creation on installation
Please see the documentation wiki for FAQ’s regarding the 3.6.5 release.
Road to Joomla! 3.7
Over the last weeks we have sent mixed messages about Joomla! 3.7 and what will be included in the final version. Without having an alpha/beta version published this is always complicated but with this post we are trying to clear the air.
The only Joomla! Downloads Hub you’ll ever need
The Joomla! Community proudly presents the centralised and localised Joomla! Downloads portal. It will be the only place you’ll ever need to visit for all Joomla! CMS core files.
Revised Assessment of 3.6.4 Security Release
As part of our post-release review process for the 3.6.4 release, the Joomla! Security Strike Team has identified and confirmed an additional side effect of the issue resolved in security advisory 20161002 (CVE-2016-8869) and as such we have revised our assessment of this issue.
Joomla! 3.6.4 Released
Joomla! 3.6.4 is now available. This is a security release for the 3.x series of Joomla! which addresses three critical security vulnerabilities and a bug fix for two-factor authentication. We strongly recommend that you update your sites immediately.
This release only contains the security fixes and bug fix; no other changes have been made compared to the Joomla! 3.6.3 release.Note: This announcement was revised on 27 October to include a third vulnerability confirmed after the release, please see this announcement for additional information.
What's in 3.6.4
Version 3.6.4 is released to address two critical security issues and a bug regarding two-factor authentication.
Security Issues Fixed
- High Priority - Core - Account Creation (affecting Joomla! 3.4.4 through 3.6.3) More information »
- High Priority - Core - Elevated Privileges (affecting Joomla! 3.4.4 through 3.6.3) More information »
- High Priority - Core - Account Modifications (affecting Joomla! 3.4.4 through 3.6.3) More information »
- [#12497] Two-Factor Authentication encryption fix
Please see the documentation wiki for FAQ’s regarding the 3.6.4 release.
Supplements often hold harmful stuff
Lead in ginkgo pills. Arsenic in herbals. Bugs in a baby's colic and teething syrup. Toxic metals and parasites are part of nature, and all of these have been found in "natural" products and dietary supplements in recent years.
et aside the issue of whether vitamin and herbal supplements do any good. Are they safe? Is what's on the label really what's in the bottle? Tests by researchers and private labs suggest the answer sometimes is no. One quarter of supplements tested by an independent company over the last decade have had some sort of problem. Some contained contaminants. Others had contents that did not match label claims. Some had ingredients that exceeded safe limits. Some contained real drugs masquerading as natural supplements.
"We buy it just as the consumer buys it" from stores, said Dr. Tod Cooperman, president of ConsumerLab.com. The company tests pills for makers that want its seal of approval, and publishes ratings for subscribers, much as Consumer Reports does with household goods.
Other tests, reported in scientific journals, found prenatal vitamins lacking claimed amounts of iodine and supplements short on ginseng and hoodia -- an African plant sparking the latest diet craze.
"There's at least 10 times more hoodia sold in this country than made in the world, so people are not getting hoodia," said Dr. Mehmet Oz, a heart surgeon and frequent Oprah Winfrey guest who occasionally has touted the stuff.
Industry groups say that quality problems are the exception rather than the rule.
"I believe that the problem is narrow, that the well-established and reputable brands deserve their reputations," said Michael McGuffin, president of the American Herbal Products Association.
Of course, prescription drugs have had problems, too. Dozens of deaths were linked last year to tainted heparin, a blood thinner produced in China, for example. However, pharmaceutical drugs must show evidence to the government of safety and effectiveness before they go on sale. Not so for dietary supplements.
Read more... Link
9-6 Mon, Tue,
Joomla! The most popular and widely used Open Source CMS Project in the world.
JoomlaCode, development and distribution made easy.
Joomla! Components, Modules, Plugins and Languages by the bucket load.
For all your Joomla! merchandise.