Magento Security Patch SUPEE-11219 Released
October 2019 saw Magento Inc. release SUPEE-11219, a brand-new security patch to shield latest versions of Magento eCommerce platform.
Though there have been no known attacks against the present safety issues, Magento team is sharp to respond timely to your suggestions and findings, as well as to continuously test and track the performance of the platform to ensure vulnerability-free environment for any ecommerce business with far-reaching ambitions. The SUPEE-11219 security patch addresses, among other, remote code execution (RCE), cross-site scripting (XSS) and cross-site request forgery (CSRF) issues. These have been noticeably enhanced in Magento Commerce 220.127.116.11 and Open Source 18.104.22.168. At the same time you may opt for the patch and install it on your version of the platform.
More on recent security enhancements
Information on all the changes in 22.214.171.124 and 126.96.36.199 releases is available in the following release notes:
Opt for one of the following with regard to your Magento version, and ensure steadfast performance of your store:
|Magento Commerce 188.8.131.52-184.108.40.206||Install SUPEE-11219 or upgrade to Magento Commerce 220.127.116.11|
|Magento Open Source 18.104.22.168-22.214.171.124||Install SUPEE-11219 or upgrade to Magento Open Source 126.96.36.199|
A word of notice for Magento 2.1.x users
The Magento 2.2.10 software release marks the final supported software release for Magento version 2.1.x. As of June 30 2019, Magento 2.1.x will no longer receive security updates or product quality fixes now that its support window has expired.