Permalink
Browse files

[2.1.4] Version bump and changelog

  • Loading branch information...
1 parent 96b690d commit 227fc666619aa99a7d636ddbb625fd4c50046cd3 @weierophinney weierophinney committed Mar 13, 2013
Showing with 129 additions and 24 deletions.
  1. +105 −0 CHANGELOG.md
  2. +23 −23 README.md
  3. +1 −1 library/Zend/Version/Version.php
View
@@ -1,5 +1,105 @@
# CHANGELOG
+## 2.1.4 (13 Mar 2013):
+
+- ZF2013-01: Query route (http://framework.zend.com/security/ZF2013-01)
+- ZF2013-02: RNG support (http://framework.zend.com/security/ZF2013-02)
+- ZF2013-03: DB platform quoting (http://framework.zend.com/security/ZF2013-03)
+- 2752: `Zend_Json_Server` to accept null parameters
+ (https://github.com/zendframework/zf2/issues/2752)
+- 3696: `Zend\Json\Server\Server` should allow parameters with NULL values
+ (https://github.com/zendframework/zf2/issues/3696)
+- 3767: Allow NULL parameter values in `Zend/Json/Server`
+ (https://github.com/zendframework/zf2/issues/3767)
+- 3827: Fix mismatches between the PHPDoc and the method signatures
+ (https://github.com/zendframework/zf2/issues/3827)
+- 3840: allow a null page in pages array, to compensate for ZF issue #3823
+ (https://github.com/zendframework/zf2/issues/3840)
+- 3842: Hotfix/zend test improve console usage
+ (https://github.com/zendframework/zf2/issues/3842)
+- 3849: Check if values are set in `Zend\Db\Sql\Insert.php` for prepared
+ statement
+ (https://github.com/zendframework/zf2/issues/3849)
+- 3867: `FileGenerator::setUses()` MUST can take arguments from
+ `FileGenerator::getUses()`
+ (https://github.com/zendframework/zf2/issues/3867)
+- 3868: `ClassGenerator::fromReflection` not generate class properties
+ (https://github.com/zendframework/zf2/issues/3868)
+- 3869: Remove BC break in `Identical` validator
+ (https://github.com/zendframework/zf2/issues/3869)
+- 3871: The method delete on the `RowGateway` now returns the affected rows
+ (https://github.com/zendframework/zf2/issues/3871)
+- 3873: Fixes an issue when binding a model to a form collection element
+ (https://github.com/zendframework/zf2/issues/3873)
+- 3885: Hotfix/add tests console adapter
+ (https://github.com/zendframework/zf2/issues/3885)
+- 3886: Add tests console prompt
+ (https://github.com/zendframework/zf2/issues/3886)
+- 3888: `DefinitionList` `hasMethod` fix
+ (https://github.com/zendframework/zf2/issues/3888)
+- 3907: Add tests console request response
+ (https://github.com/zendframework/zf2/issues/3907)
+- 3916: Fix PUT HTTP method usage with params
+ (https://github.com/zendframework/zf2/issues/3916)
+- 3917: Clean the Console abstract adapter
+ (https://github.com/zendframework/zf2/issues/3917)
+- 3921: [+BUGFIX] Fixed column names bug `Zend\Db\Sql\Select`
+ (https://github.com/zendframework/zf2/issues/3921)
+- 3925: Added view and validator dependency
+ (https://github.com/zendframework/zf2/issues/3925)
+- 3936: Improve the remove of `SendResponseListener`
+ (https://github.com/zendframework/zf2/issues/3936)
+- 3946: Adding config to `openssl_pkey_export()`
+ (https://github.com/zendframework/zf2/issues/3946)
+- 3947: fix exception %s passed variable of 'A service by the name or alias %s' should be $name
+ (https://github.com/zendframework/zf2/issues/3947)
+- 3948: Bug/merging translator textdomains
+ (https://github.com/zendframework/zf2/issues/3948)
+- 3950: Fix zero value in argument
+ (https://github.com/zendframework/zf2/issues/3950)
+- 3957: [Hotfix] Fixed incorrect `PDO_Oci` platform recognition
+ (https://github.com/zendframework/zf2/issues/3957)
+- 3960: Update toString() to use late static binding for encoding methods
+ (https://github.com/zendframework/zf2/issues/3960)
+- 3964: Fix fluent interface
+ (https://github.com/zendframework/zf2/issues/3964)
+- 3966: Better polyfill support for `Stdlib` and `Session`
+ (https://github.com/zendframework/zf2/issues/3966)
+- 3968: fixed `Exception\InvalidArgumentException` messages in `Zend\Log`
+ (https://github.com/zendframework/zf2/issues/3968)
+- 3971: SessionArrayStorage doesn't preserve `_REQUEST_ACCESS_TIME`
+ (https://github.com/zendframework/zf2/issues/3971)
+- 3973: Documentation improvement `Zend\View\Stream`
+ (https://github.com/zendframework/zf2/issues/3973)
+- 3980: change `HOST_DNS_OR_IPV4_OR_IPV6` to `0x13` for `$validHostTypes`
+ (https://github.com/zendframework/zf2/issues/3980)
+- 3981: Improve exception messages
+ (https://github.com/zendframework/zf2/issues/3981)
+- 3982: Fix `\Zend\Soap\AutoDiscover` constructor
+ (https://github.com/zendframework/zf2/issues/3982)
+- 3984: Update `ArrayStack.php`
+ (https://github.com/zendframework/zf2/issues/3984)
+- 3987: Fix ChromePhp logger interface and debug level
+ (https://github.com/zendframework/zf2/issues/3987)
+- 3988: Fix & Unit test for `preparestatement` notices
+ (https://github.com/zendframework/zf2/issues/3988)
+- 3991: Hotfix/3858 - `findHelper` problem in Navigation Helper
+ (https://github.com/zendframework/zf2/issues/3991)
+- 3993: `SessionArrayStorage` Request Access Time and Storage Initialization
+ (https://github.com/zendframework/zf2/issues/3993)
+- 3997: Allow https on scheme without a hostname
+ (https://github.com/zendframework/zf2/issues/3997)
+- 4001: Fix `ViewFeedStrategyFactory` comment
+ (https://github.com/zendframework/zf2/issues/4001)
+- 4005: Hotfix/case sensitive console
+ (https://github.com/zendframework/zf2/issues/4005)
+- 4007: Pass `ClassGenerator` instance instead of boolean
+ (https://github.com/zendframework/zf2/issues/4007)
+- 4009: Minor if to else if improvement
+ (https://github.com/zendframework/zf2/issues/4009)
+- 4010: Hotfix/zend test with console route
+ (https://github.com/zendframework/zf2/issues/4010)
+
## 2.1.3 (21 Feb 2013):
- 3714: Zend\Stdlib\ArrayObject::offsetExists() returning by reference
@@ -568,6 +668,11 @@ For those affected, the following courses of action are possible:
* Initialize and register a Zend\Session\Storage\SessionStorage object
explicitly with the session manager instance.
+## 2.0.8 (13 Mar 2013):
+
+- ZF2013-01: Query route (http://framework.zend.com/security/ZF2013-01)
+- ZF2013-02: RNG support (http://framework.zend.com/security/ZF2013-02)
+- ZF2013-03: DB platform quoting (http://framework.zend.com/security/ZF2013-03)
## 2.0.7 (29 Jan 2013):
View
@@ -5,11 +5,11 @@ Develop: [![Build Status](https://secure.travis-ci.org/zendframework/zf2.png?bra
## RELEASE INFORMATION
-*Zend Framework 2.1.4dev*
+*Zend Framework 2.1.4*
This is the fourth maintenance release for the version 2.1 series.
-DD MMM YYYY
+13 Mar 2013
### UPDATES IN 2.1.4
@@ -41,6 +41,27 @@ request object instead.
For more information on the security vector, please see
[ZF2013-01](http://framework.zend.com/security/ZF2013-01).
+#### Security fix: Better RNG support
+
+The `Zend\Math\Rand` component generates random bytes using the OpenSSL
+or Mcrypt extensions when available but will otherwise use PHP's
+`mt_rand()` function as a fallback. All outputs from `mt_rand()` are
+predictable for the same PHP process if an attacker can brute force
+the seed - which can be done if the attacker has access to a random number
+generated by `mt_rand` or the session ID (if generated without using additional
+entropy).
+
+Zend Framework have revised the `Zend\Math\Rand` component to replace the
+current `mt_rand()` fallback for OpenSSL/Mcrypt with Anthony Ferrara's
+[RandomLib](https://github.com/ircmaxell/RandomLib), incorporating an additional
+entropy source based on [source code published by George
+Argyros](https://github.com/GeorgeArgyros/Secure-random-bytes-in-PHP). The new
+fallback collects entropy from numerous sources other than PHP's internal seed
+mechanism and extracts random bytes from the resulting mixed entropy pool.
+
+For more information on this security vector, please see
+[ZF2013-02](http://framework.zend.com/security/ZF2013-02).
+
#### Security fix: DB platform quoting
Altered `Zend\Db` to throw notices when insecure usage of the following methods
@@ -79,27 +100,6 @@ New polyfill support was created which does the following:
The functionality works with both Composer and ZF2's autoloading support, using
either PSR-0 or classmaps. All typehinting is preserved.
-#### Security fix: Better RNG support
-
-The `Zend\Math\Rand` component generates random bytes using the OpenSSL
-or Mcrypt extensions when available but will otherwise use PHP's
-`mt_rand()` function as a fallback. All outputs from `mt_rand()` are
-predictable for the same PHP process if an attacker can brute force
-the seed - which can be done if the attacker has access to a random number
-generated by `mt_rand` or the session ID (if generated without using additional
-entropy).
-
-Zend Framework have revised the `Zend\Math\Rand` component to replace the
-current `mt_rand()` fallback for OpenSSL/Mcrypt with Anthony Ferrara's
-[RandomLib](https://github.com/ircmaxell/RandomLib), incorporating an additional
-entropy source based on [source code published by George
-Argyros](https://github.com/GeorgeArgyros/Secure-random-bytes-in-PHP). The new
-fallback collects entropy from numerous sources other than PHP's internal seed
-mechanism and extracts random bytes from the resulting mixed entropy pool.
-
-For more information on this security vector, please see
-[ZF2013-02](http://framework.zend.com/security/ZF2013-02).
-
Please see [CHANGELOG.md](CHANGELOG.md).
### SYSTEM REQUIREMENTS
@@ -19,7 +19,7 @@
/**
* Zend Framework version identification - see compareVersion()
*/
- const VERSION = '2.1.4dev';
+ const VERSION = '2.1.4';
/**
* Github Service Identifier for version information is retreived from

0 comments on commit 227fc66

Please sign in to comment.