Joomla! 3.9.16 released

Announcements from the Joomla! Project for the attention of all Users. We encourage all Joomla! users to subscribe to this forum or check it regularly.
Joomla! Security Updates: http://feeds.joomla.org/JoomlaSecurityNews | Joomla! Vulnerable Extensions: http://feeds.joomla.org/JoomlaSecurityV ... Extensions
Post Reply
User avatar
pe7er
Joomla! Master
Joomla! Master
Posts: 22520
Joined: Thu Aug 18, 2005 8:55 pm
Location: Nijmegen, Netherlands
Contact:

Joomla! 3.9.16 released

Post by pe7er » Tue Mar 10, 2020 4:58 pm

Joomla 3.9.16 is now available. This is a security release for the 3.x series of Joomla which addresses six security vulnerabilities and contains over 20 bug fixes and improvements.

On Upgrade: If your database contains duplicated user entries the upgrade process will fail to create a database index. This will not affect the operation of the Website but should be solved.
More information can be found here

What's in 3.9.16?
Joomla 3.9.16 includes 6 security vulnerability fixes and addresses several bugs, including:


Security Issues Fixed
  • Low Priority - Core - SQL injection in Featured Articles menu parameters (affecting Joomla 1.7.0 through 3.9.15) More information »
  • Low Priority - Core - CSRF in com_templates image actions (affecting Joomla 3.2.0 through 3.9.15) More information »
  • Low Priority - Core - XSS in Protostar and Beez3 (affecting Joomla 3.0.0 through 3.9.15) More information »
  • Low Priority - Core - Incorrect Access Control in com_templates (affecting Joomla 2.5.0 through 3.9.15) More information »
  • Low Priority - Core - Identifier collisions in com_users (affecting Joomla 3.0.0 through 3.9.15) More information »
  • Low Priority - Core - Incorrect Access Control in com_fields SQL field (affecting Joomla 3.7.0 through 3.9.15) More information »
Bug fixes and Improvements
  • Link rel attributes: ‘noopener’ attributes #28005, ‘sponsored’ and ‘ugc’ attributes #28055
  • Fields - Imagelist: Correct the display of the folder structure #16708
  • Popular Tags Module fix #27745
  • User - Contact Creator plugin: catid fixed #27949
Visit GitHub for the full list of bug fixes.

Download
Full announcement + download links: https://www.joomla.org/announcements/re ... -9-16.html

Discussion Forum: viewtopic.php?f=9&t=978630
Kind Regards,
Peter Martin, Global Moderator
https://db8.nl - Joomla specialist, Nijmegen, Nederland
Co-developer of d2 Content https://data2site.com/joomla-extensions/d2-content

 
 
Post Reply

Return to “Announcements”