Magento 2 Performance Posts

Magento Security Patch SUPEE-11219 Released

October 2019 saw Magento Inc. release SUPEE-11219, a brand-new security patch to shield latest versions of Magento eCommerce platform.

Though there have been no known attacks against the present safety issues, Magento team is sharp to respond timely to your suggestions and findings, as well as to continuously test and track the performance of the platform to ensure vulnerability-free environment for any ecommerce business with far-reaching ambitions. The SUPEE-11219 security patch addresses, among other, remote code execution (RCE), cross-site scripting (XSS) and cross-site request forgery (CSRF) issues. These have been noticeably enhanced in Magento Commerce 1.14.4.3 and Open Source 1.9.4.3. At the same time you may opt for the patch and install it on your version of the platform. 

More on recent security enhancements

Information on all the changes in 1.14.4.3 and 1.9.4.3 releases is available in the following release notes:

Opt for one of the following with regard to your Magento version, and ensure steadfast performance of your store:

Magento Commerce 1.9.0.0-1.14.4.1 Install SUPEE-11219 or upgrade to Magento Commerce 1.14.4.3
Magento Open Source 1.5.0.0-1.9.4.1 Install SUPEE-11219 or upgrade to Magento Open Source 1.9.4.3

A word of notice for Magento 2.1.x users

The Magento 2.2.10 software release marks the final supported software release for Magento version 2.1.x. As of June 30 2019, Magento 2.1.x will no longer receive security updates or product quality fixes now that its support window has expired.

Unboxing SUPEE-11219

MAGENTO SECURITY PATCH SUPEE-11155 RELEASED

Magento Inc. announces new patch to eliminate a number of acute errors and vulnerabilities in cross-site operations. SUPEE-11155 to stand guard over your Magento store.

Supee Patch 11155 for Magento

Magento has always kept a sharp eye on security and performance issues of the platform. The team guarantees safest environment for any ecommerce business with far-reaching ambitions. A  timely and powerful security patch SUPEE-11155 proves the best of Magento maintenance services. The patch contains multiple security enhancements which help close remote code execution, cross-site scripting, cross-site request forgery and other vulnerabilities.

Opt today for one of the following with regard to your Magento version, and ensure steadfast performance of the store:

Magento Commerce
1.9.0.0
1.14.4.1
Install SUPEE-11155 or upgrade to Magento Commerce 1.14.4.2
Magento Open Source
1.5.0.0
1.9.4.1
Install SUPEE-11155 or upgrade to Magento Open Source 1.9.4.2

List of high CVSSv3 severity issues addressed by the present security patch: