Jump to content
bbh_blocked_dnftl
Rules, Terms of Use, & Privacy Policy ×
Tiberium Technology® Forums

Welcome to Tiberium Technology® Forums

Welcome to Tiberium Technology® Forums, like most online communities you must register to view or post in our community, but don't worry this is a simple free process that requires minimal information for you to signup. Be apart of Tiberium Technology® Forums by signing in or creating an account.
  • Start new topics and reply to others
  • Subscribe to topics and forums to get email updates
  • Get your own profile page and make new friends
  • Send personal messages to other members.

Guest Message by DevFuse

Minify Security Patch for IP.Board 3.4.x

By [R] NuclearGeneral
in IPS RSS

 Share

Recommended Posts

  • Root Admin
Newbie

[R] NuclearGeneral

Posted
  • Root Admin
Posted
Security Update: Potential vulnerability in third-party Minify library
A potential security vulnerability with Minify has been discovered that only affects some specific server environments.

Minify is a third party app that combines multiple CSS and javascript files to help speed up the rendering of IP.Board in a browser. This issue may affect your site even if you are not making use of Minify in IP.Board.

Although the vulnerability is caused by the Minify application, in the interests of our customers we felt it best to patch the issue. We have updated the zip file available from your client area and are including a manual patch in this announcement.
Additionally, IPS reported the issue to the Minify developers who have released their own similar patch today in the form of a new release (version 2.1.7): https://groups.google.com/forum/#!msg/minify/cpN-ncKPFZE/kwYVpLMkfDwJ

This issue only affects IP.Board 3.4.0 - 3.4.5.

Installing the patch
Simply download the attached zip file and once extracted, upload /public/min/config.php to your server replacing the one on the server.
Alternatively, you may follow the instructions made available by the Minify developers in their release announcement. While our patch was developed in-house prior to the release of Minify 2.1.7, either patch will protect your board.

 

IPS Hosting Clients

 

If you are an IPS Hosting client you do not need to be concerned with this security issue. Our servers are not vulnerable to this specific exploit.



View the full article at IPS

 

 

(NG33) Global Adverts

(NG33) Xbox/PSN Tags

(NG33) BuyNow BBCode

(NG33) Members Donate Button

 


My Free Mods:
[NG23] News System v1.1.1 | Custom Pages v4.2 | (NG30) Google Adsense Ads v1.2.2
(NG30) Google Ads In Topic View v1.1.1 | (NG30) iClient Message In A Bottle v1.1.0 | (NG30) Forum Icon Legend v1.0.1
(NG30) Registration Notes v1.0.0 | (NG30) IP.Chat Message v1.0.0

My Paid Mods:
(NG33) Global Adverts v2.1.0 | (NG30) Rotating Banners v1.1.0 | (NG33) BuyNow BBCode v2.0.0
(NG33) Members Donate Button v1.0.8 | (NG33) Xbox/Psn Tags v1.0.3
(NG30) Image Align BBCode v1.0.0 | (NG30) Topic HTML v1.0.0 | (NG30) Google Checkout v1.0.0 | (NG30) LightBox Link BBCode v1.0.0

Mods In Development:
(NG33) Social Groups Addon - Group Payment Button | (NG33) Global Ads v2.2.0 Alpha 1

My Services:
Mod Installation Service | Skin Installation Service | Forum Upgrade Service

25d62e68d76cd7f75667a83cf86de91d.png571a3be8802342dcad9f07b714798cab.pngd650fe3d5d63fbbbab3604d6dc2414a0.png45b90d1ccf717d0a8f5d408051b94ef2.png
cacd42cb21d2574e269f68f0e79192dc.png62544e0b76b142e25661166266eb7944.png9fd72f98b8e65b7fb691407ee5d42391.png
b7abd2a44678e89c2bb3aa91e401ea99.png9687ca76387f2ede1fbb7df8d2508b3e.pngc8c57eb84a468892635126acaf75ff6f.png

---------------------------
For Support Questions About Your Hosting Account, Please Post Your Question In The HelpDesk System.
http://www.tiberiumstudios.net/Files/Sigs/sig.gif
---------------------------
My YouTube! Channel
The Price of War Clan.com
---------------------------

 

 


Common Developer Articles:
Creating Your Own Hooks | Creating A Template Plugin | Creating A Portal Plugin | Database Plugins/Callbacks | Supporting AdminCP Permissions | Template Logic and Variables
Using The Javascript Popup Class | Parsing BBCode & HTML | Adding a Profile View Tab | Convert an IPB 2 component to an IPB 3 application | Handling AJAX Requests

Settings Tab
[Your Settings]
Forums tab
[Forums]
Blog tab
[Your Blogs]
Downloads tab
[Your Files]
Gallery tab
[Your Albums]
Profile Tab
[Change Profile Info]
[About Me Page]
[Change Signature]
[Change Photo]
[Change Avatar]

NXE:
NuclearGeneral.png
NewNXE:
NuclearGeneral.png
DarkSigBar:
NuclearGeneral.png
XboxOneSig:
NuclearGeneral.png
XboxOneSig2:
NuclearGeneral.png

 Share
Go to topic listing
×
×
  • Create New...

Important Information

By using this site, you agree to our Guidelines, & Privacy Policy. We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.