Entries Tagged as “HotFix”
Posted By: Shilpi Khariwal 7 Comments April 12, 2012
"Adobe ColdFusion 10" · "productivity" · "Rapid Application Development" · "web application development" · "web application security"
How many times you have wished there was a simpler way to apply hot-fixes? How many times number of steps involved have caused inconvenience and errors in deployment? The debugging required in most of these cases really takes a long time. Same is true for uninstalling a particular hot-fix.
With ColdFusion 10, all of this will be solved and hot-fix installation will becomes a one click activity. Hot-fix installer (updater) is bundled within ColdFusion 10. This will eliminate the hassles of copying files, deleting files, different hot-fixes like cumulative, security etc. There will be always a single cumulative hoti-fix available. Hot-fix installer will take care of all the work required to update the server and will also keep the back up.
Read my blog here to know details about this feature.
Posted By: Shilpi Khariwal 3 Comments March 13, 2012
Today, a priority 2 update is released, addressing an important vulnerability in ColdFusion 9.0.1 and earlier. Adobe recommends to update the ColdFusion servers. Here is the link for security bulletin
This hot-fix addresses hashDoS (denial of service attack using hash collisions) issue. CV-2012-0770.
I wanted to cover HashDos in details so I have added a separate entry for this. HashDos: DoS using Hash Collisions
Posted By: Shilpi Khariwal 8 Comments December 13, 2011
An important security hot-fix is released today for ColdFusion 9.0.1 and earlier. Here is the link to the
security bulletin. This hot-fix addresses Cross site scripting (XSS) issues for cfform tag and RDS.
Posted By: Shilpi Khariwal 4 Comments September 16, 2011
Cumulative Hot-Fix 2 is released for CF9.0.1. Cumulative Hotfix 2 consists of previously released fixes for the Security issues mentioned in the bulletins APSB11-04, APSB11-14, APSB11-15 along with the cumulative hotfix 1 and the new bug fixes. This cumulative hot fix also has the new session invalid fix added to the Security hot fix.
The complete instructions and list of issues fixed can be found at - http://kb2.adobe.com/cps/918/cpsid_91836.html
Posted By: Shilpi Khariwal 1 Comment September 16, 2011
We have released fix for â??Session is invalidâ?? issue. The fix is done for CF9.0.1 as part of CHF2 (Cumulative hot fix 2) as well as in the form of the update on June security Hot-fix.
For CF9.0.1 & CHF 2 - Cumulative Hotfix 2 consists of previously released fixes for the Security issues mentioned in the bulletins APSB11-04, APSB11-14, APSB11-15 along with the cumulative hotfix 1 and the new bug fixes. This cumulative hot fix also has the new session invalid fix added to the Security hot fix.
The complete instructions can be found here - http://kb2.adobe.com/cps/918/cpsid_91836.html
If you are on CF9 or below (or you want to update Security hotfix) â?? you can apply update on Security Hot-fix released in June. Complete instructions can be found at â?? http://kb2.adobe.com/cps/907/cpsid_90784.html
If you are applying this hot-fix for the first time or setting up a new CF server, Please take the complete hot-fix package.
