Today, we are distributing updates that improve our most recent security release. SUPEE-7405 v1.1, Enterprise Edition 1.14.2.4, and Community Edition 1.9.2.4 add support for PHP 5.3 and address issues with upload file permissions, merging carts, and SOAP APIs experienced with the original release. They DO NOT address any new security issues.

More information is provided on the Magento Security Center and in the Enterprise Edition and Community Edition release notes. All merchants must deploy the patch or upgrade to the new versions, even if they have not experienced any issues, to maintain compatibility with future releases. SUPEE-7405 v1.1 must also be deployed on top of the previous patch.

Patches and upgrades are available for the following Magento versions:

• Enterprise Edition 1.9.0.0-1.14.2.3: SUPEE-7405 v1.1 or upgrade to Enterprise Edition 1.14.2.4
• Community Edition 1.5.0.0-1.9.2.3: SUPEE-7405 v1.1 or upgrade to Community Edition 1.9.2.4

DOWNLOADING THE UPDATES

To download a patch or release, choose from the following options:

• Partners:

• Enterprise Edition Merchants:

• Community Edition Merchants:

Merchants should be sure to install all previous patches, if they haven’t done so already, and use this occasion to do a security assessment of their systems in accordance with our Security Best Practices. Patches should be installed and tested in a development environment before being put into production. More information on installing patches for Magento 1.x is available online.

Thank you for your attention and continued support.

Best regards,

The Magento Team