Patches&Updates phpBB 2 Update



09 Jan 2006

H-Sphere versions:   2.4.1 +

This update eliminates phpBB "url" bbcode script insertion vulnerability and updates phpBB to v.2.0.19.

Update Description:

This update replaces H-Sphere archive used for forum installation on all web boxes.

The update will directly affect only newly-created forums. All existing forums will remain effected by the security hole.

To eliminate the hole, you should reinstall forum via H-Sphere. Installing/reinstalling forum will clear forum database and all custom changes and settings.

Requirement:

Make sure to back up custom database before reinstalling forum and restore it afterwards.

Update procedure:

  1. Log into your control panel server as root:
    su -
  2. Download the update package from our site:
    Linux:
    wget http://psoft.net/shiv/HS/u-phpBB-2.0.19.tar.gz
    FreeBSD:
    fetch http://psoft.net/shiv/HS/u-phpBB-2.0.19.tar.gz
  3. Unpack the archive:
    tar zxf u-phpBB-2.0.19.tar.gz
  4. Enter the unpacked directory:
    cd u-phpBB
  5. Run the script:
    /bin/sh update.sh


Copyright 1998-2008. Positive Software Corporation.
All rights reserved.