From 4fd3fa0b8c191ae55f68f0527d18a46bcbc7362c Mon Sep 17 00:00:00 2001 From: matthew Date: Mon, 30 Jul 2012 15:18:21 +0000 Subject: [PATCH] Updated version to 1.12.0rc3 git-svn-id: http://framework.zend.com/svn/framework/standard/branches/release-1.12@25025 44c647ce-9c0f-0410-b52a-842ac1e357ba --- README.txt | 6 +++--- library/Zend/Version.php | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/README.txt b/README.txt index b266b6cf4c..ac3ab381b0 100644 --- a/README.txt +++ b/README.txt @@ -2,7 +2,7 @@ Welcome to the Zend Framework 1.12 Release! RELEASE INFORMATION --------------- -Zend Framework 1.12rc2 Release ([INSERT REV NUM HERE]). +Zend Framework 1.12rc3 Release ([INSERT REV NUM HERE]). Released on , . SECURITY FIXES FOR 1.12.0 @@ -16,8 +16,8 @@ could be specified by adding a specific DOCTYPE element to XML-RPC requests; exploiting this vulnerability could coerce opening arbitrary files and/or TCP connections. -The patch in 1.11.12 ensures libxml_disable_entity_loader() is called -before any SimpleXML calls are executed, thus removing the +The patch in 1.11.12 and 1.12.0 ensures libxml_disable_entity_loader() +is called before any SimpleXML calls are executed, thus removing the vulnerability. Thanks goes to Johannes Greil and Kestutis Gudinavicius of SEC-Consult diff --git a/library/Zend/Version.php b/library/Zend/Version.php index 2cc99c70b5..6c1e118ba6 100644 --- a/library/Zend/Version.php +++ b/library/Zend/Version.php @@ -32,7 +32,7 @@ final class Zend_Version /** * Zend Framework version identification - see compareVersion() */ - const VERSION = '1.12.0rc2'; + const VERSION = '1.12.0rc3'; /** * The latest stable version Zend Framework available