Blog

It's time for our second C5 Dev Round Up tutorial! We are holding an ongoing series of interactive sessions where concrete5 community developers can interact directly with members of the core team to discuss best practices and explore challenging problems.
 


Join us for another online town hall meeting on Tuesday (2019/05/07, 2019 May 07) at 9:30am Pacific Daylight Time.

Join us in the #town_hall channel in Slack for extra discussion and access!

 


 

It is with great sadness that we must share the passing of Jeremy Werst, known on concrete5.org as HereNT.


It's time to kick off some developer network tutorials!

As previously discussed in town hall meetings, we would like to have an ongoing series of interactive sessions where concrete5 community developers can interact directly with members of the core team to discuss best practices and explore challenging problems.
 


The first maintenance release of 8.5.0 is now available! concrete5 8.5.1 fixes some bugs with bulk user actions introduced in 8.5.0, improves the installation of concrete5 on databases that don't support advanced character sets, fixes some bugs with the new API, and more. It's a minor, maintenance release, and is highly recommended for anyone running 8.5.1.

Download concrete5 8.5.1

What's new in concrete5 8.5.1


Join us for another online town hall meeting on Tuesday (2019/04/02, 2019 April 2) at 9:30am Pacific Daylight Time:

 

Join us in the #town_hall channel in Slack for extra discussion and access!


Nearly a year in the making, concrete5 8.5.0 is now available today! Happy Pi Day!

 


Join us for another online town hall meeting on Tuesday (2019/03/05, 2019 March 5) at 9:30am Pacific:

Chat and questions will be in the #town-hall channel on concrete5.slack.com.


concrete5 8.4.5, 8.5.0RC2 and 5.6.4.0 have just been released! Please read on for more details.


 

A vulnerability in concrete5 which permitted authenticated users to view the contents of arbitrary messages was reported on February 11, 2019. No information identifying individuals was exposed. A fix was added to the concrete5 repository on Monday, February 15, 2019 and mitigated on the concrete5.org website on Wednesday, February 20, 2019.

All concrete5 sites should update to versions 8.4.5 or 5.6.4.0. The concrete5.org website has been upgraded and messages are no longer vulnerable, and no evidence was found that suggests this vulnerability was exploited on the website.