[Michael]

vBulletin 3.5.1, vBulletin 3.0.10, vBulletin 2.3.8 Released

Quote:

The original purpose of this release was to provide a regular, scheduled bug-fix / service release for the new 3.5.x series, but newly discovered flaws in Internet Explorer and PHP have necessitated a security release for all three vBulletin branches. The first flaw is in Microsoft Internet Explorer. It affects vBulletin image uploads and potentially opens a cross-site-scripting exploit. It has affected many web-based applications that allow image uploads, including phpBB and Hotmail. Although a fix from Microsoft would be preferable, we have implemented a work-around in all three branches of vBulletin to prevent the Internet Explorer flaw from being exploited. The second flaw is in PHP and may allow the entry of unsanitized data into several areas in vBulletin. This may create security holes that are not directly caused by vBulletin, simply exploited through vBulletin as it uses affected PHP code. PHP 4.4.1 has been released to address this issue (no updated PHP5 is available yet). If you are running PHP 4, it is strongly recommended that you update your PHP installation to 4.4.1! I'd just like to reiterate that neither of these flaws are directly related to vBulletin. Rather, they are flaws in software that ties into vBulletin. We are simply creating workarounds for these issues to prevent them from being exploited.

Yey, another day of frantic skin, file, and modification updates for Michael.
Read the official announcement here.

[Hector]

There's 3 new ones? That makes no sence...what's the differance between them?

Lol, Mike has to update again!

[Michael]

There are three different versions of vBulletin avaiable.

They are all really different in their features so much that they are completely different versions. The 3.5.1 which we are now running is the recommended stable one, but the other 2.3.X and 3.0.X series are still supported.

[Hector]

So we have the best right? Cool...so, do you have to update...again.

[Michael]

Quote:

Originally Posted By: Hector So we have the best right? Cool...so, do you have to update...again.

Of course we have the best, for example with vBulletin 3.5 which we are using adding in modifications and hacks has been completely simplified. And running vBulletin 3 over vBulletin 2 gives us lots more visually appealing features and functionality, for example the Quick Reply box is only avaiable as an addon.

[Muhammad Haris]

I hate these updates.Maybe the final version should only have major updates with the next version.

[Michael]

Quote:

Originally Posted By: Muhammad Haris I hate these updates.Maybe the final version should only have major updates with the next version.

The update process in vBulletin is really, really simple now. All i hate about the whole system is the unfortunate need to make these silly template edits in which some cases are just plain stupid

[+ King Kovifor]

Quote:

Originally Posted By: Michael The update process in vBulletin is really, really simple now. All i hate about the whole system is the unfortunate need to make these silly template edits in which some cases are just plain stupid

That would be what kills me. lol.