Magento Security Patch SUPEE-11219 Released
October 2019 saw Magento Inc. release SUPEE-11219, a brand-new security patch to shield latest versions of Magento eCommerce platform.
Though there have been no known attacks against the present safety issues, Magento team is sharp to respond timely to your suggestions and findings, as well as to continuously test and track the performance of the platform to ensure vulnerability-free environment for any ecommerce business with far-reaching ambitions. The SUPEE-11219 security patch addresses, among other, remote code execution (RCE), cross-site scripting (XSS) and cross-site request forgery (CSRF) issues. These have been noticeably enhanced in Magento Commerce 1.14.4.3 and Open Source 1.9.4.3. At the same time you may opt for the patch and install it on your version of the platform.
More on recent security enhancements
Information on all the changes in 1.14.4.3 and 1.9.4.3 releases is available in the following release notes:
Opt for one of the following with regard to your Magento version, and ensure steadfast performance of your store:
Magento Commerce 1.9.0.0-1.14.4.1 | Install SUPEE-11219 or upgrade to Magento Commerce 1.14.4.3 |
Magento Open Source 1.5.0.0-1.9.4.1 | Install SUPEE-11219 or upgrade to Magento Open Source 1.9.4.3 |
A word of notice for Magento 2.1.x users
The Magento 2.2.10 software release marks the final supported software release for Magento version 2.1.x. As of June 30 2019, Magento 2.1.x will no longer receive security updates or product quality fixes now that its support window has expired.