Hot on the heels of Bolt 2.2.9, we've released Bolt 2.2.10. The only change in this release is an update to the latest versions of our Database abstraction library and related packages. Doctrine 2.5.1 fixes a hard-to-exploit but serious security issue. Most Bolt websites by far are not vulnerable to this, unless you're using Bolt as a foundation to use Doctrine's ORM or code generation features.
If you don't know what this means, you can rest assured that this issue does not affect you, and there's no need to update right away.
Detailed changes since Bolt 2.2.9
- Updated: Updated Doctrine and it's components to the latest version. (version 2.5.1, see here for details)
Install & Upgrade
To install this version from scratch, follow the instructions on the updated installation page in the documentation, as can be found here: Installing Bolt. To upgrade an existing site, see Updating. Be sure to get the correct versions, though: bolt-latest.tar.gz or bolt-latest.zip.
For the lazy:
curl -O http://bolt.cm/distribution/bolt-latest.tar.gz tar -xzf bolt-latest.tar.gz --strip-components=1 chmod -R 777 files/ app/database/ app/cache/ app/config/ theme/ extensions/