Manual Security Patch Instructions for VB 4.x.x

MK_1 commented on BirdOPrey5's reply

Fri 14 Mar '14, 6:27am
I fully agree with you, but your manual security path instructions are for ALL vB 4.x versions, too?

So I can't understand why the diff file has an additional step and is not similar to your steps.
Mark.B replied

Fri 14 Mar '14, 5:59am
Originally posted by _Avalon_ View Post

Ok, i passed all instructions above and re-write files. What changes in forum working process now should I notice?

Nothing, as it is just a patch.
Leave a comment:
_Avalon_ replied

Fri 14 Mar '14, 5:53am
Originally posted by Mark.B View Post

If you are running 4.2.0 you will need to go through the manual instructions.

Ok, i passed all instructions above and re-write files. What changes in forum working process now should I notice?
Leave a comment:
BirdOPrey5 replied

Fri 14 Mar '14, 5:52am
Originally posted by MK_1 View Post

So you tell me that the diff file is not the latest version? Diff file and Joe's post are 90% similar, just this one step.

The diff files will work on ALL vBulletin 4.x versions. The diff files were provided because actual patches were not being released for older VB 4.x versions.
Leave a comment:
BirdOPrey5 replied

Fri 14 Mar '14, 5:50am
Originally posted by kandhro View Post

Hello Mark B
can u plz let me know where are the manual instructions for vb 4.2.0

regards

This thread is the manual instructions for VB 4.2.0. They are the same instructions for ALL of VB 4.x.x, the code has not changed in years.
Leave a comment:
MK_1 replied

Fri 14 Mar '14, 5:45am
Originally posted by Mark.B View Post

That's from the diff file...you should follow the instructions in Joe's post.

So you tell me that the diff file is not the latest version? Diff file and Joe's post are 90% similar, just this one step.
Leave a comment:
kandhro replied

Fri 14 Mar '14, 5:37am
Hello Mark B
can u plz let me know where are the manual instructions for vb 4.2.0

regards
Leave a comment:
BirdOPrey5 replied

Fri 14 Mar '14, 5:34am
4.2.0 Patch 4 does NOT contain the fix. The only patch version of 4.x that includes the fix is 4.2.2 Patch 1.
Leave a comment:
Mark.B replied

Fri 14 Mar '14, 5:21am
Originally posted by _Avalon_ View Post

Good day, bit not clear, Is it not enough to rewrite files from Security patch: 4.2.0 Suite PL4?

If you are running 4.2.0 you will need to go through the manual instructions.
Leave a comment:
_Avalon_ replied

Fri 14 Mar '14, 5:13am
Good day, bit not clear, Is it not enough to rewrite files from Security patch: 4.2.0 Suite PL4?
Leave a comment:
Mark.B replied

Fri 14 Mar '14, 4:51am
That's from the diff file...you should follow the instructions in Joe's post.
Leave a comment:

MK_1 replied

Fri 14 Mar '14, 2:30am

I guess this part is missing:
In includes/functions_misc.php

Code:

@@ -773,7 +774,7 @@
 */
 function construct_hidden_var_fields($serializedarr)
 {
-    $temp = unserialize($serializedarr);
+    $temp = json_decode($serializedarr, true);
 
     if (!is_array($temp))
     {

http://www.vbulletin.com/forum/forum...x-of-vbulletin

vBulletin 4 End of Life

Announcement

Manual Security Patch Instructions for VB 4.x.x

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment: