| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
It is unmaintained anymore.
|
|
6.5.22
o Feature Enhancements
Enhancements to existing features for Release 6.5.22 are listed below:
* OAuth 2 support for Google connector : OAuth 2 authentication is now
supported for Google connector.
o Known Issues
The following are known issues with Sugar 6.5.22:
* 62064 : Shipping field in the Grand Total and Line Items section of
quotes does not update as expected when the Shipping field is calculated
via Sugar Logic.
* 73330 : Attempting to connect to the IBM SmartCloud application via the
External Accounts tab does not work as expected.
6.5.21
o Fixed Issues
Sugar 6.5.21 is a security update released to address certain security
vulnerabilities identified during our routine QA checks.
We strongly recommend that you install this update at the earliest
opportunity. While we have not experienced any reported incidents relating to
these vulnerabilities to date, failure to install this update could leave you
exposed to malicious third party attacks. For more information regarding this,
please refer to the Security Advisory announcement.
These vulnerabilities have been addressed in release 6.5.21 which is available
for download from the Download Manager.
Administrators are strongly encouraged to upgrade their Sugar instances
running 6.5.20 or earlier to 6.5.21 to prevent potential exploitation of these
weaknesses.
|
|
Changes before 6.5.19, please refer: http://support.sugarcrm.com/02_Documentation/01_Sugar_Editions/05_Sugar_Community_Edition/
Fixed Issues
Sugar 6.5.20 is a security update released to address certain security
vulnerabilities identified during our routine QA checks.
We strongly recommend that you install this update at the earliest
opportunity. While we have not experienced any reported incidents relating to
these vulnerabilities to date, failure to install this update could leave you
exposed to the following types of malicious third party attacks:
Unauthenticated users may retrieve contents from system-generated files.
These vulnerabilities as well as an additional issue have been addressed in
release 6.5.20 which is available for download from the Download Manager.
Administrators are strongly encouraged to upgrade their Sugar instances
running 6.5.x or earlier to 6.5.20 to prevent potential exploitation of these
weaknesses.
|
|
Quote from http://www.providentcrm.com/news/sugarcrm-6-5-17-patch-list/.
1. Module scanner now blocks two additional functions:
simplexml_load_file and simplexml_load_string
2. JS Security Fix in Emails -- changing AJAX call from GET to POST.
3. XML Handling -- Additional error handling and libxml_disable_entity_loader
is now set to true.
4. Users module -- Additional checking on un-authorised access to other users
profile, plus Bugfix for password field.
|
|
Upstream changes:
Please visit: http://support.sugarcrm.com/02_Documentation/01_Sugar_Editions/05_Sugar_Community_Edition/
|
|
sysutils/user_* packages.
|
|
* Update and fix MESSAGE.
Changelog:
* Many bugfixes.
See http://support.sugarcrm.com/02_Documentation/01_Sugar_Editions/05_Sugar_Community_Edition/Sugar_Community_Edition_6.5 .
|
|
Requested by gdt.
pkgsrc policy: file names per OSI, not per default-allowed set.
|
|
|
|
|
|
SugerCRM is open source CRM (Customer Relationship Management)
system.
|
