Tag: stable

MantisBT 2.27.0 Released

Go ahead and download the release from our website.

In order to stay up to date with the latest MantisBT news, please star our GitHub repository, join our Gitter channel, or follow us on X or Mastodon and retweet to spread the word!

MantisBT 2.27.0

This release includes over 50 enhancements and bug fixes, and sees the end of support for older PHP versions as we increase our minimum requirement to 7.4. Here are a few highlights among the many changes.

Thanks to community member Grummbeer‘s contributions, there have been many improvements to Markdown processing. This includes syntax highlighting for code blocks (0034124), improved rendering and a fix for the infamous and long-standing double quotes " and lesser than sign < rendered as HTML entities bug (0024628).

Categories can now be disabled (0031017); graphs generation has been refactored for better performance (0034042) and enhanced display (0034608); improved error handling facilitates troubleshooting when something goes wrong.

There is more of course, so for full details please refer to theĀ Change Log.

MantisBT 2.26.0 Released

Go ahead and download the release from our website.

In order to stay up to date with the latest MantisBT news, please star our GitHub repository, join our Gitter channel, or follow us on X or Mastodon and retweet to spread the word!

MantisBT 2.26.0

This long-overdue feature and maintenance release contains nearly 150 fixes and enhancements !

Among many other things, it finally brings support for PHP 8.2, and generally improves PHP 8 compatibility. The earliest supported PHP version is now 7.2.5.

There are also numerous improvements to the REST API.

New configuration options were added to control access to Export and Print Report features (see 0022224). The default value for the latter was set to UPDATER for security reasons (see 0025492); to restore earlier behavior, administrators should set $g_print_reports_threshold = VIEWER;.

It would be somewhat pointless to copy the whole list of fixed issues here; please refer to the Change Log for complete details.

MantisBT 2.25.0 Released

In order to stay up to date with the latest MantisBT news, please star our GitHub repository, follow us on Twitter and retweet to spread the word!

Go ahead and download the release from our website.

MantisBT 2.25.0

This feature and maintenance release contains over 100 fixes and enhancements; among many other things, it improves PHP 8 compatibility, LDAP authentication and invalid plugins management. It also includes a schema change, so do not forget to upgrade the database as documented in the Admin Guide.

Please note that this will be the last release supporting PHP 5; starting with MantisBT 2.26.0, the minimum PHP version will be 7.2 – read the official announcement for details.

Continue reading “MantisBT 2.25.0 Released”

MantisBT Security releases 1.3.8, 2.1.2 and 2.2.2

Maintenance releases including security fixes for Cross-Site Scripting (XSS) issues have just been released. We advise all installations to upgrade; releases can be downloaded from our website.

Patched vulnerabilities:

  • 22537: CVE-2017-6973 – XSS in adm_config_report.php (affects 1.3.0-rc.2 and later)

Additionally, version 2.1.1 also includes fixes previously released in 1.3.7 and 2.2.1:

  • 22486: CVE-2017-6797 – XSS in bug_change_status_page.php
  • 22497: CVE-2017-6799 – XSS in view_filters_page.php