Security fix for ColdFusion Builder 3 released

December 13, 2016
Newbie 25 posts
Followers: 0 people
6

Security fix for ColdFusion Builder 3 released

Newbie 25 posts
Followers: 0 people
December 13, 2016

An important security fix for ColdFusion Builder 3 is now available for download. For more information on the vulnerability refer APSB16-44.

You can download the patch from here (md5 checksum : b67914e27ca4fb8e0fc5ecd354e9a330). Apply this patch to secure your ColdFusion Server and Builder installation. Follow the installation instructions detailed at this technote

Comments (6)
2016-12-20 23:54:47
2016-12-20 23:54:47

I am glad to know that they have fixed the Web-socket frame size error in both Google Chrome and Internet Explorer browsers in update 22.Even XML Web services error is fixed in ColdFusion 10 with the new updates.

Like
2016-12-16 07:52:22
2016-12-16 07:52:22

@Alberto,
Can you please trying running with below command on MacOS:
./CFBuilder.app/Contents/MacOS/CFBuilder -clean

Like
2016-12-16 06:50:42
2016-12-16 06:50:42

Alberto,
Which directory are you running the command from? Are you prefixing the command with “./” like so : “./CFBuilder”.

Like
2016-12-16 06:50:14
2016-12-16 06:50:14

@Steve – This issue was fixed in Coldfusion Builder 2016 Update 3 that was released on the 7th of Oct 2016 but is being called out in this bulletin. If you are already on Update 3, you should be good.

#Alberto – We will have someone check this and get back to you.

Like
2016-12-16 06:35:05
2016-12-16 06:35:05

I tried launching using the clean command from the terminal on MacOS, but received the following message “CFBuilder: command not found”.
What am I doing wrong? Thanks!

Like
2016-12-15 00:26:14
2016-12-15 00:26:14

since the security bulletin is for both CFB 3 and 2016, will there be another update for 2016 or does this apply to both?

Like
Add your comment