Release Notes

Version 6.11.0

Focus: bug fixes, maintenance, and security

Bug fixes

  • Ensure messages (no. successful imports, discarded duplicates, etc.) are properly generated for resource importing when browserTabID is enabled.
  • When entering a new resource (or editing an existing one), it was not possible to insert a citation in the abstract or notes field.
  • In past upgrades, not all collections were properly collated and labelled in the collections table.
  • Fix the date of files in release tarballs to the date of the release (EPOCH can confuse FTPs).

Feature enhancements

  • Detect whether the user is using a mobile device or desktop computer.
  • In Admin|Configure, the admin can make certain menus and items within them unavailable to users depending on the device (see 1. above).

Improvements

  • Remove verticalorange and enluminure templates [#638].

Maintenance

  • Update Smarty (v5.3.1).
  • Update PHPMailer (v6.9.2).

Security

  • Prevent session fixation (session.use_only_cookies PHP option).
  • Prevent session hijacking by sharing the cookie only via HTTP (session.cookie_httponly PHP option).