May 23, 2008 at 08:00 AM

Team Mambo Announces Release of Mambo 4.6.4

Team Mambo has released 4.6.4, codename "Sunrise", as a maintenance and security release. Mambo 4.6.4 fixes some serious security vulnerabilities affecting all earlier versions of 4.6. It is recommended that all 4.6+ users update to 4.6.4 as soon as possible. Instructions for upgrading are included in the release, which you can download from the Mambo Code Forge here.
Please see the Security Forum for details of these security issues.

This release also fixes some bugs found in 4.6.3 and contains performance enhancements, along with enhancements to the Language Manager and a number of core extensions.

Known Issues:

There is an outstanding issue with base href. To temporarily work around this problem, should your site experience problems with it, please edit your template's index.php code like this:
Find this code within the

<head></head> tags
<?php mosShowHead(); ?>

Replace it with this:

<?php mosShowHead('','base'); ?>

This will prevent base href from being generated by Mambo. You may need to then manually enter a base href tag to enable correct linking to relative links within your site when you have SEF enabled. If you experience any problems with this workaround please seek help on the forums.

This issue is being worked on by the Team and a fix will be available soon. Due to the severity of the security vulnerabilities that were identified Mambo 4.6.4 had to be released urgently and could not be delayed while the base href bug was fixed.

Release Notes:

Core

  • Added determineOptionAndItemid;
  • Fixed FS#305 $cache is not a mosCache object;
  • Fixed sef related undefined index for $mysql_charsets in database.php;
  • Temporary workaround in database class for FS#294 (mosRedirect doesn't work right with content rating);
  • _runBots pass wrong mambot parameters (mosimage parameters doesn't take effect);
  • ! deprecating $configuration->current_language->charset by $mosConfig_charset;
  • # fixed FS#338 - "simple mode" & "Advanced Mode" doesn't switch;
  • ! extra sanitation for mosRedirect.

Installation

  • Fixed - If you enter the wrong database authentication info you get a blank page instead of the javascript error popup;
  • mos_ prefixes replaced by #__ (some tables doesn't take a prefix different to mos_);
  • mosConfig_usecaptcha is not included at configuration.php after a fresh installation;
  • Make sure that components without menu links will be populated in the database, so they can be uninstalled.

Com Content

  • fixed bug in mosimage alignment options in frontend editing;
  • fixed, FS#326 - Pagination Don't work If Use Caching;
  • Content checked out times;
  • Fixed FS#318 - Fatal error in content.php - Call to undefined method stdClass::def();
  • Fixed FS#319 - Undefined variable pageTitle in content.php;
  • fixed cache doesn't work when a content item is displayed;
  • added Output cache to mosCache class;
  • adding extra validation rating content, the user must have access to the article;
  • # fixed FS#345 - Cannot set "Use Global" for pdf, print, and email icons of default "Home" item in mainmenu;
  • ! refactoring method getItemid of contentHandler class, to produce Itemids more accurate and reuse for categories and sections;
  • # Fixed FS#314 - Search result links does not match Sublevel Menu links, the order that the Itemid is calculated has been reordened, first exact items, caterories, sections, global blog sections, and frontpage itemid at end.

Language Manager

  • adding a empty set of catalogs for the default english catalog;
  • the default english language now is editable;
  • xml parser doesn't read language xml files with encoding different to utf-8 (Wrong characters in dates);
  • validating that each file exists before attempt to export it;
  • refactoring GNU gettext detection at PHPGettextAdmin;
  • Adding Lao language thanks to laithai team;
  • Adding Bosnian language thanks to water_rabbit;
  • fixed, plurals form expression for the language isn't saved into the .mo file, the default one is always used;
  • fixed, one single plural form isn't supported by ngettext;
  • Untranslated strings;
  • current language selected validation must be within language manager and not inside mosMenuBar class;
  • FS#330 - Enable translations of non-default language;
  • Adding new $mosConfig_charset global setting.

SEF

  • Fixed missing base href tag;
  • Fixed logic hole in index.php that caused a blank page when using a non-sef link with SEF turned off;
  • fixed, FS#260 - SEF URLs seem broken using cPanel temp URL;
  • fixed, FS#332 - base href kills anchors.

Universal Instaler

  • modules, templates and mambots get uninstalled under a reinstall attempt;
  • fix, languages.po catalog isn't installed.

MOSltyCE

  • # fixed FS#336 - Default editor toolbar not showing in IE7 with 3rd party addons.

Com Weblinks

  • stripslashes function call fixed to have the correct # of params.

Com Search

  • Fixed FS#310 - categories.searchbot.php and section.searchbot.php and results with no menu linkage;
  • FS#325 - com_search issues with spaces and options. resolved.

RSS Feeds

  • changed the encoding of the produced feeds to utf-8.

Com Modules

  • Fixed FS#308 - no error message in module preview when trying to preview a non-typed module;
  • Fixed custom module duplicating content;
  • Fixed FS#308 - Preview Module fails with Call to undefined function: mosgetparam().

Com Mambots

  • Fixed bug where sorting mambots doesn't work.

Com Comments

  • comment poster is displayed as anonymous if name or email is not supplied when submitting comments;
  • Fixed config settings not saved with emulate globals off in administrator/components/com_comment/admin.comment.php;
  • Fixed issues with com_comment when emulate/register globals is off;
  • adding extra validation leaving comments, the article must exist, be published, the user must have access to the article and the section must be allowed to leave comments;
  • # comment form doesn't work with sef enabled;
  • # fixed FS#315 - Write Comment and section module links points to itemid 1.

Com Contact

  • fixed missing contact_id and &amp; issue in contacts component form redirect;
  • # fixed FS#335 - Contact Details - state field increased in length.

Com Admin

  • # fixed FS#341 - Check for Updates redirects to a wrong address for downloads.

Com Polls

  • # fixed FS#320 - Poll Component Menu Assignments, polls doesn't appears in menu links assigned;

Mod Polls

  • $Itemid removed from the poll results, onchange javascript code;
  • sefRelToAbs call removed from the poll results on link;
  • Fixed numerous sef and Itemid issues in polls;
  • make sure that menuid is set.

Mod Newsflash

  • Fixed FS#312 - mod_newsflash does not render images.

Mod Sections

  • Fixed Itemid not being included in sefRelToAbs();
  • incorrectly generated urls with SEF enabled.

Mod latestcontent

  • Fixed Latest Content vertical display option bug.

Mod Sections

  • # fixed FS#315 - Write Comment and section module links points to itemid 1.

Mod Templatechooser

  • template fix for SEF quotation was missing in the showimage function - to preview template thumbnails.

Mod Random Image

  • fixed random image module notice if there is no folder set in its configuration;
  • added default value to mod_random_image module folder parameters.
<Previous   Next>

The Mambo Foundation is a volunteer non-profit organization and relies entirely upon the financial and human resource donations of the wider Mambo open source community to keep Mambo going.

We need your support!
Please make a donation today.