SMF 2.0.2 and 1.1.16 critical security patches released

Started by Norv, December 22, 2011, 11:43:01 PM

Previous topic - Next topic

kat

Quote from: 青山 素子 on June 20, 2012, 05:58:24 PM

The first part of my response was concerning K@ directing users to use the update archive as a package manager package, which will not work.

Actually, updates do (At least, they always have, for me). UpGRADES don't.

Quote from: Nodaz on June 20, 2012, 06:18:34 PMi went to browse packagse, it was there, i clicked on it and it installed fine...

WoOt!

Kindred

why would there be a 2.0.3 or 1.1.17 if there are no security issues to patch?
Слaва
Украинi

Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

"Loki is not evil, although he is certainly not a force for good. Loki is... complicated."

Antes

Quote from: Kindred on June 21, 2012, 08:53:36 AM
why would there be a 2.0.3 or 1.1.17 if there are no security issues to patch?

So you prefer saying we fixed that glitch/bug whatever but included in next big version? If you fixed some bugs in 2.0.x circle you have to make new release. If I'm not wrong there is already 33 bugs (public) resolved/closed. Its enough to release another update.

Arantor

That isn't how it works, that's never been how it works in the 9 year history of SMF.

Once a x.y.0 release is made (like 2.0.0), the ONLY things fixed after are security fixes. There have been no security issues fixed, ergo no new release.

It isn't about whether you'd 'prefer' it or not, it's how SMF development operates - keeping life easier for users and admins to manage upgrades.

You see, by that logic, you could release a new patch every single bug fix, which means we'd be up to 2.0.34 by now - and no-one needs that.

Antes

Things can be changed nothing stands against it.

I didn't say release new update after every single bug/glitch fix. I said X is a good number to release update.

Living with "bugs" never made users life easier.

Beside all I'm completely happy with no-new release (that means there is no security issue in software)

青山 素子

Quote from: Antes on June 21, 2012, 07:50:03 PM
I didn't say release new update after every single bug/glitch fix. I said X is a good number to release update.

Living with "bugs" never made users life easier.

It depends on the bug and how bad it is. Also, if the fixes have been done in a new branch and a lot of code has changed, it may be difficult to backport the fix. Often, in cases like that, it's better to leave the bug in place. Sometimes the actual fix for the bug requires a re-write of code, which may have side-effects in other parts of SMF, especially older code.

Traditionally, updates in a stable release have only been made for security issues or major bugs.
Motoko-chan
Director, Simple Machines

Note: Unless otherwise stated, my posts are not representative of any official position or opinion of Simple Machines.


Antes

Quote from: 青山 素子 on June 22, 2012, 01:41:00 AM
Quote from: Antes on June 21, 2012, 07:50:03 PM
I didn't say release new update after every single bug/glitch fix. I said X is a good number to release update.

Living with "bugs" never made users life easier.

It depends on the bug and how bad it is. Also, if the fixes have been done in a new branch and a lot of code has changed, it may be difficult to backport the fix. Often, in cases like that, it's better to leave the bug in place. Sometimes the actual fix for the bug requires a re-write of code, which may have side-effects in other parts of SMF, especially older code.

Traditionally, updates in a stable release have only been made for security issues or major bugs.

Oh now i understand thanks for the info.

searchgr

Quote from: a10gf on June 20, 2012, 06:18:15 AM
QuoteNo updates for the last 6 months. This is very disappointing. What's going on?
No need for (security) updates for a long time. This is very positive!

Aha! And what about new features?

Arantor

As has always been the case with SMF, once a stable release (1.0.0, 1.1.0, 2.0.0) is reached, no new features are added until the next one and only security patches get released, which is what 2.0.1 and 2.0.2 were. The next release with new features will be 2.1 and is still under development.

searchgr


TwitchisMental

Quote from: Arantor on July 08, 2012, 04:02:37 PM
As has always been the case with SMF, once a stable release (1.0.0, 1.1.0, 2.0.0) is reached, no new features are added until the next one and only security patches get released, which is what 2.0.1 and 2.0.2 were. The next release with new features will be 2.1 and is still under development.


Bug Fixes are released in small updates like 2.0.2 last time I checked <.< .


I say this because even on the release notes of 2.0.2 it clearly states the version includes bug fixes.


Not trying to start anything just trying to clear things up for myself.


http://www.simplemachines.org/community/index.php?topic=463103.0

Arantor

The bulk of the 2.0.2 patch is security. There are non-security bug fixes, but nothing that is more than one-line changes, and in low single digits.

TwitchisMental

Quote from: Arantor on July 21, 2012, 09:12:24 PM
The bulk of the 2.0.2 patch is security. There are non-security bug fixes, but nothing that is more than one-line changes, and in low single digits.


Okay thanks for clearing that up :).

gerzok


HBM

I'm new and taking a spin around. Great software....might replace my bulletin with this,,,

trcx

Apologies if some one has already asked this, but is there some kind of mailing list I can subscribe too for alerts of when smf publishes a new release? 

Kindred

no....   if there is a critical security release or a major release, the team usually sends an announcement to all accounts on this system.
The SMF admin on your own forum also will announce when there is an update.

or, you can just keep an eye on this board....
Слaва
Украинi

Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

"Loki is not evil, although he is certainly not a force for good. Loki is... complicated."

sharks

It's been a while since the last update... Only a couple of bugs have been fixed in the past months. :(

Suki

Disclaimer: unless otherwise stated, all my posts are personal and does not represent any views or opinions held by Simple Machines.

Kindred

Sharks,

Once a release goes to final, only critical/major bugs or security issues get addressed with point releases.
The effort gets put into the next MAJOR release (in this case 2.1) rather than non critical patches to the previous release (2.0.x.)
Слaва
Украинi

Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

"Loki is not evil, although he is certainly not a force for good. Loki is... complicated."

Advertisement: