Please be advised after extensive testing, that as of today, 03 Sept 2022, the SuiteCRM containers that are Managed by Lightspeed have all been upgraded from version 7.12.5 to version 7.12.7. We have retired the 7.12.5 version across all customers.
Released 16/08/2022
Release Notes 7.12.7 – 16 August 2022
Security
- CVE: Pending – Improper Authorization
- CVE: Pending – Improper Authorization
Bug Fixes
- PR: 9736 – Fix #9736 – ElasticSearch still running repair if not enabled
- PR: 9735 – Fix #9735 – Add ElasticSearch Repair option to Admin→Repair Menu
- PR: 9512 – Fix #9512 – Case Updates Thread now displays updates from ‘Unknown’ sources
- PR: 9686 – Fix #9686 – Draft Email Opens in Draft View From History Subpanel
- PR: 9314 – Fix #9314 – Respect the subpanel flat flag
- PR: 9608 – Fix #9421 – Elastic search logic hooks fail to index properly
- PR: 9539 – Fix #9539 – Fix Elasticsearch indexing unnecessarily during QR+R
- PR: 9599 – Fix #9599 – Fix missing pagination on Elasticsearch Results
- PR: 9628 – Fix #9627 – Studio changes not picked up by CRM when opcache.validate_timestamps=0
- PR: 9662 – Fix #9660 – Copy only select files to custom/working directory
- PR: 9664 – Fix #9663 – Smaller screens automatically collapse non-subpanel panels
- PR: 9591 – Fix #9547 – Workflow actions not saving correctly for certain field types
- PR: 9163 – Fix #9163 – listviewdefs.php for Outbound Email Accounts module to use correct by default
- PR: 9561 – Fix #9561 – with search where fail state was not handled when missing listviewdefs.php file
- PR: 9609 – Fix #9609 – Change the logger level in setStream and getStream functions to prevent excessive log errors
- PR: 9570 – Fix #9569 – Fix issue with missing dropdown image
- PR: 9546 – Fix #9545 – Quote potential reserved name
- PR: 9552 – Fix #9551 – Update date period to include the users TZ
- PR: 9597 – Fix #9594 – Don’t convert nl to BR for contact updates
- PR: 9635 – Fix #9634 – Add check on cron to show the basic view on first load
- PR: 9637 – Fix #9639 – Add styling of email recipient button
- PR: 9604 – Fix #9258 – Fix for Notes module advanced date-modified search
- PR: 9603 – Fix #9267 – Fix for popup &email reminder options
Release Notes 7.12.6 – 24 May 2022
Security
- CVE: Pending – SQL Injection Vulnerability
- CVE: Pending – SQL Injection Vulnerability
- CVE: Pending – SQL Injection Vulnerability
- CVE: Pending – Improper Access Control
- CVE: Pending – RCE and CSRF Vulnerability
- CVE: Pending – Authenticated Bypass Vulnerability
Bug Fixes
- PR: 9577 – Update TinyMCE
- PR: 9583 – Fix AOR_Report Unit Tests
- PR: 9578 – Update Jquery JS Libraries
- PR: 8599 – Auto-close success message boxes in ModuleBuilder
- PR: 9584 – Fix SCRM-Core#87 – Prevent disabling the default language
- PR: 9523 – Fix #9438 – Adding Action keyword to fieldname exception
- PR: 9495 – Fix #9494 – Force displaying line breaks to textarea fields
- PR: 9580 – Fix #9435 – Dropdown doesn’t return empty selected value
- PR: 9522 – Fix #9435 – Dropdown doesn’t return empty selected value
- PR: 9589 – Fix #9530 – Fallback to allowed_preview defaults
- PR: 9581 – Fix #3157 – Add default option to enable session_gc
- PR: 9582 – Fix #9437 – Default cookie path