Magento 2.4.3-p1 Download: What You Need to Know
If you are running an online store with Magento, you might be wondering what is the latest version of the platform and how to get it. In this article, we will explain everything you need to know about Magento 2.4.3-p1, the latest security patch for Magento 2.4.3.
magento 2.4.3-p1 download
Introduction
Magento is one of the most popular and powerful e-commerce platforms in the world, powering over 250,000 online stores and generating over $155 billion in annual revenue. Magento offers a rich set of features, flexibility, scalability, and security for online merchants of all sizes and industries.
What is Magento 2.4.3-p1?
Magento 2.4.3-p1 is a security release that provides seven security fixes that enhance your Magento 2.4.3 or Magento Open Source 2.4.3 deployment. It provides fixes for vulnerabilities that have been identified in the previous release (Magento 2.4.3 and Magento Open Source 2.4.3).
Why should you download Magento 2.4.3-p1?
Downloading Magento 2.4.3-p1 is important for maintaining the security and performance of your online store. By applying this patch, you can protect your store from potential attacks, improve your site speed and user experience, and benefit from the latest platform upgrades.
How to download Magento 2.4.3-p1?
You can download Magento 2.4.3-p1 from the official GitHub repository or from the Adobe Commerce portal. You can also use Composer to update your Magento installation to the latest version.
Features and Improvements of Magento 2.4.3-p1
Magento 2.4.3-p1 not only fixes security issues, but also introduces some features and improvements that enhance the functionality and usability of the platform.
Security Enhancements
Magento 2.4.3-p1 includes several security enhancements that address various types of vulnerabilities, such as cross-site scripting (XSS), remote code execution (RCE), denial-of-service (DOS), and information disclosure.
Session ID Removal
Session IDs have been removed from the database to prevent session hijacking and unauthorized access to customer data. This code change may result in breaking changes if you have customizations or extensions that use the raw session IDs stored in the database.
magento 2.4.3-p1 release notes
magento 2.4.3-p1 security patch
magento 2.4.3-p1 installation guide
magento 2.4.3-p1 upgrade instructions
magento 2.4.3-p1 composer update
magento 2.4.3-p1 system requirements
magento 2.4.3-p1 known issues
magento 2.4.3-p1 performance improvements
magento 2.4.3-p1 recaptcha coverage
magento 2.4.3-p1 rate limiting feature
magento 2.4.3-p1 media gallery permissions
magento 2.4.3-p1 graphql query complexity
magento 2.4.3-p1 content security policy
magento 2.4.3-p1 elasticsearch support
magento 2.4.3-p1 php compatibility
magento 2.4.3-p1 braintree extension fixes
magento 2.4.3-p1 klarna extension fixes
magento 2.4.3-p1 vertex extension fixes
magento 2.4.3-p1 amazon pay extension fixes
magento 2.4.3-p1 dotdigital extension fixes
magento 2.4.3-p1 yotpo extension fixes
magento 2.4.3-p1 b2b features and enhancements
magento 2.4.3-p1 pwa studio updates
magento 2.4.3-p1 inventory management enhancements
magento 2.4.3-p1 page builder enhancements
magento 2.4.3-p1 adobe stock integration updates
magento 2.4.3-p1 paypal smart buttons support
magento 2.4.3-p1 google tag manager support
magento 2.4.3-p1 wishlist enhancements
magento 2.4.3-p1 customer group catalog rules support
magento 2.4.3-p1 product reviews graphql support
magento 2.4.3-p1 configurable products graphql support
magento 2.4.3-p1 downloadable products graphql support
magento 2.4.3-p1 bundle products graphql support
magento 2.4.3-p1 gift cards graphql support
magento 2.4.3-p1 store credit graphql support
magento 2.4.3-p1 reward points graphql support
magento 2 .43 -p1 rma graphql support
Media Gallery Permissions
Media Gallery permissions have been restricted to prevent unauthorized access to media assets uploaded outside of the catalog/category or wysiwyg directories. Admin users can no longer access media assets through the Media Gallery that were uploaded outside of these directories. If you want to access these media assets, you need to move them to an explicitly allowed folder or adjust your configuration settings.
GraphQL Query Complexity Limits
The GraphQL maximum allowed query complexity has been lowered to prevent denial-of-service (DOS) attacks. This means that complex queries that exceed a certain threshold will be rejected by the server. You can adjust the query complexity limit by using the `max_query_complexity` configuration option.
Penetration Test Fixes
Magento 2.4.3-p1 also includes fixes for several issues that were reported by security researchers during penetration testing. These issues include XSS, RCE, DOS, and information disclosure vulnerabilities that affect various components of the platform, such as the admin panel, the checkout process, the customer account, and the GraphQL API.
Performance Boosts
Magento 2.4.3-p1 also delivers some performance improvements that enhance the speed and efficiency of the platform.
Elasticsearch Improvements
Elasticsearch has been upgraded to version 7.9.3, which provides better compatibility and stability with Magento 2.4.3-p1. Elasticsearch is now the default catalog search engine for Magento Commerce and Magento Open Source. This means that you no longer need to install a third-party module to use Elasticsearch as your search engine.
Redis Optimization
Redis has been optimized to reduce the number of queries and improve the cache hit ratio. This results in faster page load times and lower server load. Redis is now the default session storage handler for Magento Commerce.
Page Builder Enhancements
Page Builder, a powerful tool for creating and managing content on your Magento store, has been enhanced with several features and fixes that improve its usability and performance. Some of these enhancements include:
A new video background option for rows, columns, banners, and sliders.
A new HTML content type that allows you to add custom HTML code to your pages.
A new product carousel widget that displays products from a specified category or attribute.
A new sticky panel option that keeps the Page Builder panel visible while scrolling.
A new full-screen mode that hides the admin menu and header while editing pages.
A new preview mode that allows you to see how your pages look on different devices and screen sizes.
A new duplicate option that allows you to copy content types and their settings.
A new drag-and-drop feature that allows you to reorder content types within a container.
A new undo/redo feature that allows you to revert or restore changes made to your pages.
A new autosave feature that saves your changes automatically every 10 seconds.
A new image optimization feature that reduces the file size of images uploaded to the media gallery.
A new lazy loading feature that improves page load times by loading images only when they are visible on the screen.
A new accessibility feature that adds alt text and labels to images and buttons.
Platform Upgrades
Magento 2.4.3-p1 also supports some platform upgrades that enhance the compatibility and stability of the platform.
PHP 8 Support
PHP 8 is now fully supported by Magento 2.4.3-p1, which means that you can take advantage of the latest features and improvements of the PHP language, such as named arguments, union types, attributes, match expressions, and more. PHP 8 also offers better performance, security, and error handling than previous versions.
Composer 2 Support
Composer 2 is now fully supported by Magento 2.4.3-p1, which means that you can use the latest version of the dependency manager for PHP to manage your Magento installation and extensions. Composer 2 offers faster installation, lower memory usage, and improved reliability than Composer 1.
jQuery 3.6 Migration
jQuery has been upgraded to version 3.6, which provides better compatibility and security with Magento 2.4.3-p1. jQuery 3.6 fixes several bugs and vulnerabilities that affect previous versions of jQuery, such as prototype pollution and cross-site scripting (XSS).
Adobe Stock Integration Removal
The Adobe Stock Integration module has been removed from Magento 2.4.3-p1, as Adobe has discontinued the Adobe Stock service as of April 5, 2021. If you want to use Adobe Stock images on your Magento store, you need to download them before April 5, 2021 and upload them manually to your media gallery.
Conclusion
Magento 2.4.3-p1 is a security patch that provides several fixes and enhancements for Magento 2.4.3 and Magento Open Source 2.4.3. It is recommended that you download and apply this patch as soon as possible to protect your online store from potential attacks, improve your site performance and user experience, and benefit from the latest platform upgrades.
FAQs
Q: How do I know if I have Magento 2.4.3 or Magento Open Source 2.4.3 installed?
A: You can check your Magento version by logging in to your admin panel and navigating to System > Web Setup Wizard > System Configuration.
Q: How do I backup my Magento installation before applying the patch?
A: You can backup your Magento installation by using the command line or the admin panel. To use the command line, run the following commands from your Magento root directory:bin/magento setup:backup --codebin/magento setup:backup --dbbin/magento setup:backup --mediaTo use the admin panel, navigate to System > Tools > Backups and click on System Backup, Database Backup, or Media Backup.
Q: How do I apply the patch using Composer?
A: To apply the patch using Composer, run the following commands from your Magento root directory:composer require magento/product-community-edition=2.4.3-p1 --no-updatecomposer updatebin/magento setup:upgradebin/magento cache:flush
Q: How do I revert the patch if I encounter any issues?
A: To revert the patch, you need to restore your backup files and database that you created before applying the patch.
Q: Where can I find more information about Magento 2.4.3-p1?
A: You can find more information about Magento 2.4.3-p1 on the official release notes and security bulletin.
44f88ac181
Comentarios