[Phpbb-qa] phpBB 3.0.2 Release Candidate 1 released

Meik Sievertsen acyd.burn at gmx.de
Sat Jun 14 17:22:29 CEST 2008 

Hello,

In an effort to increase product stability we are happy to announce the 
availability of the first release candidate for the next minor release - 
phpBB 3.0.2.

This release fixes a lot of bugs, corrects minor issues as well as 
introducing some security enhancements. Due to popular demand we added a 
new manual code update package, known from the 2.0.23 releases. This 
package includes the code changes within the old mod template format and 
the new modx format. Everyone able to should test this release and 
report overseen bugs and issues to the bug tracker or directly to the 
developers. Specific sections of interest are:

- Redirects after logins/logouts
- Board operations with confirm boxes (MCP for example) in general with 
the new referrer option enabled
- General POST operations with the new referrer option enabled
- Uploading images as attachments with the new mime check function enabled
- Testing the new Logout from the ACP only (should only logout of the 
ACP but not the board)
- Ban via the users profile with the ban option pre-filled within the MCP
- Topic searches by author
- Testing the new Manual Update Package
- Testing the new Manual Update Package and then doing the automatic 
update to verify correct edits

Updates to the full minor release 3.0.2 will be possible. Please note 
that language packs may not be updated yet to reflect the changes within 
this release - therefore it is recommended to test with the provided 
english language pack.

The fixes are:

- [Fix] Ability to set permissions on non-mysql dbms (Bug #24955)
- [Fix] Fixed blank style on setups having no username defined within 
config.php (Bug #25065)
- [Fix] Made the compress_tar class tolerate archives that do not 
properly have their archived contents listed (Bug #14429 / thanks to 
JRSweets for his patch)
- [Fix] Moved topics should not count towards the number of topics in a 
forum (Bug #14648 / thanks to Schumi for his patch)
- [Fix] Properly check for invalid characters in MySQL DB prefixes 
during install (Bug #18775)
- [Change] Generalize load check (Bug #21255 / thanks to Xipher)
- [Change] Make utf8_htmlspecialchars not pass its argument by reference 
(Bug #21885)
- [Fix] Bring the PostgreSQL backup system back to working order (Bug 
#22385)
- [Change] Sort the tables at the database table backup screen
- [Fix] Update correct theme for cached styles in style.php (Bug #25805)
- [Fix] Also add PHPBB_INSTALLED check to download/file.php for inline 
avatar delivery
- [Fix] Unable to login to some jabber server, reverted previous change 
(Bug #25095)
- [Fix] Do not return BMP as valid image type for GD image manipulation 
(Bug #25925)
- [Change] For determining the maximum number of private messages in one 
box, use the biggest value from all groups the user is a member of (Bug 
#24665)
- [Fix] Correctly determine safe mode for temp file creation in 
functions_upload.php (Bug #23525)
- [Fix] Correctly sort by rank in memberlist (Bug #24435)
- [Fix] Purge cache after database restore (Bug #24245)
- [Fix] Correctly display subforum read/unread icons from RTL in FF3, 
Konqueror and Safari3+. (thanks arod-1 for the fix, related to Bug #14830)
- [Feature] Added optional referer validation of POST requests as 
additional CSRF protection.
- [Fix] Added missing form token in acp (thanks NBBN).
- [Feature] Added optional stricter upload validation to avoid mime 
sniffing in addition to the safeguards provided by file.php. (thanks to 
Nicolas Grekas for compiling the list).
- [Fix] Do not remove whitespace in front of url containing the boards 
url and no relative path appended (Bug #27355)
- [Change] Show email ban reason on registration. Additionally allow 
custom errors properly returned if using validate_data(). (Bug #26885)
- [Feature] Streamlined banning via the MCP by adding a ban link to the 
user profile. Also pre-fills ban fields as far as possible.
- [Feature] Added ACP logout to reset an admin session.
- [Fix] reset forum notifications in viewtopic (Bug #28025)
- [Fix] corrected link for searching post author's other posts (Bug #26455)
- [Fix] HTTP Authentication supports UTF-8 usernames now (Bug #21135)
- [Fix] Topic searches by author no longer return invalid results (Bug 
#11777)
- [Change] Don't allow redirects to different domains. (thanks nookieman)
- [Fix] Delete drafts and bookmarks when deleting an user. (#27585, 
thanks Schumi for the fix)
- [Fix] Set last_post_subject for new topics. (#23945)
- [Fix] Allow moving posts to invisible forums. (#27325)
- [Fix] Don't allow promoting unapproved group members (#16124)
- [Fix] Correctly fetch server name if using non-standard port (#27395)
- [Fix] Regular expression for email matching in posts will no longer 
die on long words.
- [Sec] Only allow urls gone through redirect() being used within 
login_box(). (thanks nookieman)


A short explanation of how to do a conversion, installation or update is 
included within the provided INSTALL.html file, please be sure to read it.

Security:

Security issues found should be reported to our 
[url=http://www.phpbb.com/bugs/security/]security tracker[/url] in the 
usual way.

Available packages:

If you experience problems with the automatic update (white screens, 
timeouts, etc.) we recommend using the "changed files only" or "patch" 
method for updating.

With this release, there are five packages available.

Full Package: Contains entire phpBB3 source and english language files.

Changed Files Only: Contains only those files changed from previous 
versions of phpBB3. Please note this archive contains changed files for 
each previous release.

Patch Files: Contains patch compatible patches from previous versions of 
phpBB3.

Automatic Update Package: Update package for the automatic updater, 
containing the changes from previous release to this release.

Code Changes Package: Update package for manual updating, containing the 
code changes from previous release to this release. The changes are 
provided as the old MOD Teamplate Format and the new MODX format.

Select whichever package is most suitable for you.

*Please ensure you read the INSTALL and README documents in docs/ before 
proceeding with installation, updates or conversions!*

Download:

Full Package:
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1.zip
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1.tar.bz2

Changed Files Only Package:
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1-files.zip
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1-files.tar.bz2

Patch Files Package:
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1-patch.zip
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1-patch.tar.bz2

Update Package:
http://www.phpbb.com/files/qa/phpBB-3.0.1_to_3.0.2-RC1.zip
http://www.phpbb.com/files/qa/phpBB-3.0.1_to_3.0.2-RC1.tar.bz2

Code Changes Package:
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1-codechanges.zip
http://www.phpbb.com/files/qa/phpBB-3.0.2-RC1-codechanges.tar.bz2


*IMPORTANT*

To correctly perform an update, do not forget to re-enable the PHPBB_QA 
constant within your includes/constants.php file. Else you are not 
prompted for an update within the ACP and the automatic update will fail. :)


Have fun with the release,
the phpBB Team

-- 
Meik Sievertsen - phpBB Development Team Leader
http://www.phpbb.com/ && http://area51.phpbb.com/

More information about the phpbb-qa mailing list