En

CakePHP官网安全更新(2021-10-14)

来源:CakePHP 发布日期:2021-10-14 阅读次数:15736 评论:0

基本信息

发布日期:2021-10-14(官方当地时间)

更新类型:安全更新

更新版本:4.2.10

感知时间:2021-10-14 10:20:50

风险等级:未知

情报贡献:TSRC

更新标题

安全更新

更新详情

The CakePHP core team is happy to announce the immediate availability of CakePHP 4.2.10. This is a maintenance release for the 4.2 branch that fixes several community reported issues.

Bugfixes
--------

You can expect the following changes in 4.2.10. See the [changelog](https://github.com/cakephp/cakephp/compare/4.2.9...4.2.10) for every commit.

* Fix a ``TypeError`` in ``CsrfProtectionMiddleware`` when invalid data was provided.
* Fixed ``MailContains`` constraint from escaping patterns multiple times.
* Improved API documentation.
* Added workaround for breaking change in PHPUnit 9.5.10.
* Fixed incorrect SQL being generated when a HasMany association has a null value, and the association has ``cascadeCallbacks``.
* Fix ``DateType`` not clearing time values for ``DateTimeImmutable``. This scenario can arise when using the ``cakephp/orm`` package directly.
* Limit clauses are ignored if no order exists when using a subquery strategy for HasMany associations.

Contributors to 4.2.10
----------------------

Thank you to all the contributors that helped make this release happen:

* ADmad
* Corey Taylor
* Julian Pollmann
* Kevin Pfeifer
* Mark Scherer
* Mark Story
* Rolf Kaiser

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

软件描述

CakePHP是一个运用了诸如ActiveRecord、Association Data Mapping、Front Controller和MVC等著名设计模式的快速开发框架

CVE编号

TSRC分析

暂无

业界资讯

暂无

评论

提交评论 您输入的评论有误,请重新输入