On February 9, 2015 we issued a patch (SUPEE-5344
here) and alerted our clients and partners about
remote code execution vulnerability in the Magento platform.
To drive awareness of the patch, we’ve issued a series
communications to our ecosystem of partners and directly to
Enterprise Edition and Community Edition customers. We
also encouraged downloads of the patch in collaboration
our partners, and directly through our services team and
developer evangelists. In addition to the patch itself,
we are announcing Magento Community Edition
which includes SUPEE-5344. The patch was also incorporated
the latest Enterprise Edition release, 1.14.2.
Magento is the largest open source community in
eCommerce. Like other open source communities, it
conscientious stewardship to ensure it remains strong.
We are committed to platform security and are taking
steps intended to ensure this. In the coming weeks, we will
establishing the Magento Alert Registry to serve as a
of communications in future urgent situations, separate
any marketing communications. By being able to connect
both our Community and Enterprise Edition merchants
via your preferred method – email, text or social – we will
able to more quickly inform you of steps to resolution.
In managing this situation, we have all have seen
power of the Magento ecosystem coming together to solve a
common problem. Together we will continue to define a new
future for commerce and we continue to be humbled by your
ongoing participation in defining Magento’s