From 52643ace1a274b514165d640860956f089be251a Mon Sep 17 00:00:00 2001 From: einhverfr Date: Mon, 18 Aug 2008 05:22:02 +0000 Subject: Changelog and release notes git-svn-id: https://ledger-smb.svn.sourceforge.net/svnroot/ledger-smb/branches/1.2@2278 4979c152-3d1c-0410-bac9-87ea11338e46 --- Changelog | 13 +++++++++++++ doc/release_notes | 36 ++++++++++++++---------------------- 2 files changed, 27 insertions(+), 22 deletions(-) diff --git a/Changelog b/Changelog index 528c385e..20aa6ee4 100644 --- a/Changelog +++ b/Changelog @@ -1,3 +1,16 @@ +Changelog for 1.2.15 +* Uppercasing some SQL statements (Chris T) +* Fixed for AR allocation corner case (Victor Q, 1881199) +* Fixed for warehouse transfer error (Jeffk, 1877860) +* Fixed error pulling transactions by department (Chris T, 1954974) +* Fixed UTF-8 encoding for Czech COA (Vladamir B, 1906081) +* Fixed upgrade script creating incorrectly named sequence (Chris T, 1987545) +* Corrected POS transactions report (JeffK and Chris T, 2025931) +* Added a max_post_size directive to the ledgersmb.conf (Chris M) +* Fixed Price Matrix logic (Chris T, 1897245) +* Fixed errors in the backported triggers for transaction table (Jeffk, 1928336) +* Corrected corner case on ar_ap_summary_fix_1.2.14.sql (Chris T) + Changelog for 1.2.14 * Build.PL now requires Test::Trap (Chris T, 1872529) * Fixed double escaping of tex under some circumstances (Seneca) diff --git a/doc/release_notes b/doc/release_notes index 60a88644..c1227422 100644 --- a/doc/release_notes +++ b/doc/release_notes @@ -1,5 +1,5 @@ RELEASE NOTES -LedgerSMB 1.2.14 +LedgerSMB 1.2.15 @@ -198,30 +198,22 @@ Also the POS system requires some additional configuration both in the chart of accounts and in the system itself. Please edit the pos.conf.pl and create appropriate till accounts. -Bugs Fixed in 1.2.6: +Major Bugs Fixed in 1.2.15: ================================ -1) Customer_id field not found error when posting AP transaction. This error -was caused by a mistake in the performance optimizations made in 1.2.5. +1) (Critical) Denial of service potential by uploading files of arbitrary size. + Prior versions did not have an upload limit, so denial of service was possibe + by uploading arbitrarily large amounts of data. -2) Erroneous headers printed to balance sheet and income statement. +2) (Critical) SQL Injection vulnerability possible in the AP transaction + report. A variable was incorrectly escaped. -3) Meta tags were added to force UTF-8 charsets, fixing occasional display -issues with multibyte characters where Apache was misconfigured. +3) Errors in transferring inventory between warehouses resolved. -4) ledgersmb-httpd.conf is now more internally consistant. The alias directive -was changed to /ledgersmb (from /ledger-smb). +4) Pricematrix now recognizes both pricebreaks and sell price fields, and works + for customers, vendors, and pricegroups. The current logic is that the + default pricing is overridden by temporary pricing for a generic pricegroup + then by the specific pricegroup, and lastly by the specific customer. -5) Minor html fixes were added to ca.pl, contributed by Donna Robertson +5) Errors pulling transactions by department are resolved. -6) Error when searching for customer by address is corrected. - -7) Invalid format for integer error fixed when saving projects unconnected to -customers. - -None of the above fixes involved changes to API's that are widely used by the -application. Impacts elsewhere from these bug fixes should be minimal. - -8) Unbound placeholder error when saving items with custom fields. This error -involved a centrally used API that is invoked when custom fields exist. The fix -is only likely to affect those installations which have custom fields attached -to orders, invoices, or parts. +For a list of all changes, see the Changelog. -- cgit v1.2.3