Difference between revisions of "OpenEMR Patches"

From OpenEMR Project Wiki
Line 1: Line 1:
= <center>5.0.0 Patch (11/10/17)</center> =
= <center>5.0.0 Patch (12/04/17)</center> =
<span style="color:red;">'''This patch is for OpenEMR version 5.0.0. If you are using a prior OpenEMR version, then you can find most recent patch [[Old_Outdated_OpenEMR_Patches|HERE]] or find out how to upgrade to 5.0.0 [[OpenEMR_Upgrade_Guides|HERE]].'''</span>
<span style="color:red;">'''This patch is for OpenEMR version 5.0.0. If you are using a prior OpenEMR version, then you can find most recent patch [[Old_Outdated_OpenEMR_Patches|HERE]] or find out how to upgrade to 5.0.0 [[OpenEMR_Upgrade_Guides|HERE]].'''</span>
<br>
<br>
<br>
<br>
=== Download link ===
=== Download link ===
<googa>http://www.open-emr.org/patch/5-0-0-Patch-6.zip|5-0-0-Patch-6.zip|/download/file/patch_5_0_0</googa>
<googa>http://www.open-emr.org/patch/5-0-0-Patch-7.zip|5-0-0-Patch-7.zip|/download/file/patch_5_0_0</googa>
<br>
<br>
<br>
<br>


=== Description ===
=== Description ===
This is the 6th patch. There are 35 files that are changed and this patch also includes the changes from prior patches.  '''Please read through the [[OpenEMR_Patches#List_of_files_(5.0.0)|list of modified files]] to ensure you haven't customized any of these, since this will copy over this.'''
This is the 7th patch. There are 72 files that are changed and this patch also includes the changes from prior patches.  '''Please read through the [[OpenEMR_Patches#List_of_files_(5.0.0)|list of modified files]] to ensure you haven't customized any of these, since this will copy over this.'''
<br>
<br>
<br>
<br>
Line 31: Line 31:
=== Fixes and New Features ===
=== Fixes and New Features ===
(note the ones with ** are new with this patch):
(note the ones with ** are new with this patch):
*[[Critical_Security_Fix_for_OpenEMR_setup.php|Critical security fix]] - reported by Sven Krewitt, fixed by Brady**
*Upgraded graphing to dygraphs that was necessary for a security fix, reported by SEC Consult Vulnerability Lab, fixed by Brady**
*Fix backup module - fixed by Brady**
*Security fix - reported by ADLab of Venustech, fixed by Brady**
*Security fixes - fixed by Alfie**
*Fix view 835 html report in edihistory - fixed by Stephen**
*Fix patient delete bug for tabs layout - fixed by Brady**
*Added back the close patient note shortcut - reported by Jeff, fixed by Brady**
*Added service location to 2310B for same npi, different address - reported by Carlos, fixed by Stephen**
*Fix for box 32b for hfca billing form - reported by Henry, fixed by Stephen**
*Fix for modifying external codes - fixed by Brady**
*Fix for inventory module destroyed menu link - reported by Nzube, fixed by Brady**
*Fixed encounter menu - reported by Daniel, fixed by Ray**
*Fixes for calendar - reported by Morten, fixed by epsdky**
*Fix nation notes report - fixed by Frankie**
*Fix insurance popup in demographics user interface - fixed by Visolve**
*[[Critical_Security_Fix_for_OpenEMR_setup.php|Critical security fix]] - reported by Sven Krewitt, fixed by Brady
*Fix backup module - fixed by Brady
*[[Critical_Security_Fix_for_CVE-2017-16540|Critical security fix]] - reported by Isaac Sears, fixed by Brady
*[[Critical_Security_Fix_for_CVE-2017-16540|Critical security fix]] - reported by Isaac Sears, fixed by Brady
*Fix in Patient PDF report regarding vital signs - reported by Arnab, fixed by Jerry
*Fix in Patient PDF report regarding vital signs - reported by Arnab, fixed by Jerry
Line 64: Line 78:
interface/forms/eye_mag/js/eye_base.php
interface/forms/eye_mag/js/eye_base.php
interface/forms/LBF/new.php
interface/forms/LBF/new.php
*interface/forms/LBF/report.php
interface/forms/procedure_order/new.php
interface/forms/procedure_order/new.php
*interface/forms/track_anything/history.php
*interface/forms/track_anything/report.js
*interface/forms/track_anything/report.php
interface/forms/vitals/report.php
interface/forms/vitals/report.php
*interface/main/backup.php
*interface/forms/vitals/templates/vitals/general_new.html
*interface/main/backuplog.php
interface/main/backup.php
*interface/main/backuplog.sh
interface/main/backuplog.php
interface/main/backuplog.sh
interface/main/calendar/modules/PostCalendar/pnincludes/Date/Calc.php
interface/main/calendar/modules/PostCalendar/pnincludes/Date/Calc.php
*interface/main/calendar/modules/PostCalendar/pntemplates/default/views/day/ajax_template.html
*interface/main/calendar/modules/PostCalendar/pntemplates/default/views/header.html
interface/main/dated_reminders/dated_reminders_add.php
interface/main/dated_reminders/dated_reminders_add.php
*interface/main/tabs/menu/menu_data.php
*interface/new/new_comprehensive.php
*interface/patient_file/encounter/forms.php
*interface/patient_file/encounter/superbill_custom_full.php
*interface/patient_file/encounter/trend_form.php
interface/patient_file/report/custom_report.php
interface/patient_file/report/custom_report.php
interface/patient_file/summary/demographics.php
interface/patient_file/summary/demographics.php
*interface/patient_file/summary/demographics_full.php
*interface/patient_file/summary/labdata.php
*interface/patient_file/summary/pnotes_full_add.php
interface/product_registration/product_registration_service.php
interface/product_registration/product_registration_service.php
*interface/themes/ajax_calendar.css
*interface/themes/style_babyblu.css
*interface/themes/style_metal.css
*interface/themes/style_oemr.css
*interface/themes/style_pdf.css
*interface/themes/style_purple.css
*interface/themes/style_sky_blue.css
*interface/themes/style_tan.css
interface/themes/tabs_style_compact.css
interface/themes/tabs_style_compact.css
interface/themes/tabs_style_full.css
interface/themes/tabs_style_full.css
*library/ajax/graph_track_anything.php
*library/ajax/graphs.php
library/appointments.inc.php
library/appointments.inc.php
library/calendar.inc
library/calendar.inc
*library/classes/Installer.class.php
library/classes/Installer.class.php
library/custom_template/ckeditor/_samples/assets/_posteddata.php
library/custom_template/ckeditor/_samples/assets/_posteddata.php
*library/edihistory/edih_csv_inc.php
*library/edihistory/edih_x12file_class.php
library/encounter_events.inc.php
library/encounter_events.inc.php
library/FeeSheet.class.php
library/FeeSheet.class.php
library/globals.inc.php
library/globals.inc.php
*library/gen_hcfa_1500.inc.php
*library/gen_x12_837.inc.php
*library/js/xl/dygraphs.js.php
*library/openflashchart/open-flash-chart.swf
library/options.inc.php
library/options.inc.php
library/patient_tracker.inc.php
library/patient_tracker.inc.php
library/report.inc
library/report.inc
*library/sanitize.inc.php
*public/assets/modified/dygraphs-2-0-0/README.md
*public/assets/modified/dygraphs-2-0-0/dygraph.css
*public/assets/modified/dygraphs-2-0-0/dygraph.js
*setup.php
*setup.php
sql/database.sql
sql/database.sql
sql/patch.sql
sql/patch.sql
*templates/prescription/general_fragment.html
*templates/prescription/general_list.html
*version.php</pre>
*version.php</pre>
<br>
<br>

Revision as of 05:05, 5 December 2017

5.0.0 Patch (12/04/17)

This patch is for OpenEMR version 5.0.0. If you are using a prior OpenEMR version, then you can find most recent patch HERE or find out how to upgrade to 5.0.0 HERE.

Download link

5-0-0-Patch-7.zip

Description

This is the 7th patch. There are 72 files that are changed and this patch also includes the changes from prior patches. Please read through the list of modified files to ensure you haven't customized any of these, since this will copy over this.

Installation instructions

Windows

1. Extract the zipped file into the openemr web directory, and say yes to copying over files
2. Open web browser and go to http://your_server_name_or_ip/openemr/sql_patch.php
(this script will run automatically and patch the database)
(if you are using the Multisite Module, then skip step 2 and follow these instructions)
3. Remove the setup.php file from the openemr web directory (if you need this file in the future, then can download it at setup.php).

Linux

1. Move the patch file to the openemr web directory, then type 'unzip 5-0-0-Patch-5.zip', and confirm ok to copy over files.
2. Open web browser and go to http://your_server_name_or_ip/openemr/sql_patch.php
(this script will run automatically and patch the database)
(if you are using the Multisite Module, then skip step 2 and follow these instructions)
3. Remove the setup.php file from the openemr web directory (if you need this file in the future, then can download it at setup.php).


Fixes and New Features

(note the ones with ** are new with this patch):

  • Upgraded graphing to dygraphs that was necessary for a security fix, reported by SEC Consult Vulnerability Lab, fixed by Brady**
  • Security fix - reported by ADLab of Venustech, fixed by Brady**
  • Security fixes - fixed by Alfie**
  • Fix view 835 html report in edihistory - fixed by Stephen**
  • Fix patient delete bug for tabs layout - fixed by Brady**
  • Added back the close patient note shortcut - reported by Jeff, fixed by Brady**
  • Added service location to 2310B for same npi, different address - reported by Carlos, fixed by Stephen**
  • Fix for box 32b for hfca billing form - reported by Henry, fixed by Stephen**
  • Fix for modifying external codes - fixed by Brady**
  • Fix for inventory module destroyed menu link - reported by Nzube, fixed by Brady**
  • Fixed encounter menu - reported by Daniel, fixed by Ray**
  • Fixes for calendar - reported by Morten, fixed by epsdky**
  • Fix nation notes report - fixed by Frankie**
  • Fix insurance popup in demographics user interface - fixed by Visolve**
  • Critical security fix - reported by Sven Krewitt, fixed by Brady
  • Fix backup module - fixed by Brady
  • Critical security fix - reported by Isaac Sears, fixed by Brady
  • Fix in Patient PDF report regarding vital signs - reported by Arnab, fixed by Jerry
  • Support all diagnostic codes (including ICD10) in post payments - reported by Kim, fixed by Stephen
  • Fix delete patient- reported by Terry and APerez; fixed by Stephen
  • Fix for duplicate procedures in the procedure order edit form - reported by Sherwin and A1Gard, fixed by Sunset systems
  • Fix for tabs layout in Edge browser - reported by Sunset Systems, fixed by Jerry
  • Fix to allow multiple codes of same code type on the layout billing code widget - reported by Alfonso, fixed by Brady
  • Fix dated reminders to show message when forward it - fixed by Matrix
  • Fix to prevent unnecessary encoding errors during upgrade and globals editing - fixed by Brady
  • Fix drawable images in layout based forms with larger image sizes - reported by aperez, fixed by Sunset Systems
  • Fixes for Eye form - fixed by Ray
  • Fix patient report tool for code_text. - fixed by Daniel
  • Fix patient report tool for vitals - reported by Arnab, fixed by Arnab, Jerry and Matthew
  • Fix fee sheet - reported by Carlos, fixed by Terry
  • Fix past appointments widget in patient summary screen - fixed by epsdky
  • Fix registration feature - reported by Arnab, fixed by Jerry
  • Security fixes - reported by SEC Consult Vulnerability Lab, fixed by Brady. The OpenEMR team thanks Wan Ikram, Fikri Fadzil and Jasveer Singh from SEC Consult Vulnerability Lab (https://www.sec-consult.com/) for responsibly reporting the identified issues and working with us as we addressed them.
  • Fix to patient PDF report - reported by Arnab Naha, fixed by Brady Miller and epsdky


List of files (5.0.0)

(note the ones prepended with * have new changes with this patch)

acknowledge_license_cert.html
interface/billing/payment_pat_sel.inc.php
interface/fax/fax_dispatch.php
interface/forms/eye_mag/SpectacleRx.php
interface/forms/eye_mag/a_issue.php
interface/forms/eye_mag/css/style.css
interface/forms/eye_mag/help.php
interface/forms/eye_mag/js/eye_base.php
interface/forms/LBF/new.php
*interface/forms/LBF/report.php
interface/forms/procedure_order/new.php
*interface/forms/track_anything/history.php
*interface/forms/track_anything/report.js
*interface/forms/track_anything/report.php
interface/forms/vitals/report.php
*interface/forms/vitals/templates/vitals/general_new.html
interface/main/backup.php
interface/main/backuplog.php
interface/main/backuplog.sh
interface/main/calendar/modules/PostCalendar/pnincludes/Date/Calc.php
*interface/main/calendar/modules/PostCalendar/pntemplates/default/views/day/ajax_template.html
*interface/main/calendar/modules/PostCalendar/pntemplates/default/views/header.html
interface/main/dated_reminders/dated_reminders_add.php
*interface/main/tabs/menu/menu_data.php
*interface/new/new_comprehensive.php
*interface/patient_file/encounter/forms.php
*interface/patient_file/encounter/superbill_custom_full.php
*interface/patient_file/encounter/trend_form.php
interface/patient_file/report/custom_report.php
interface/patient_file/summary/demographics.php
*interface/patient_file/summary/demographics_full.php
*interface/patient_file/summary/labdata.php
*interface/patient_file/summary/pnotes_full_add.php
interface/product_registration/product_registration_service.php
*interface/themes/ajax_calendar.css
*interface/themes/style_babyblu.css
*interface/themes/style_metal.css
*interface/themes/style_oemr.css
*interface/themes/style_pdf.css
*interface/themes/style_purple.css
*interface/themes/style_sky_blue.css
*interface/themes/style_tan.css
interface/themes/tabs_style_compact.css
interface/themes/tabs_style_full.css
*library/ajax/graph_track_anything.php
*library/ajax/graphs.php
library/appointments.inc.php
library/calendar.inc
library/classes/Installer.class.php
library/custom_template/ckeditor/_samples/assets/_posteddata.php
*library/edihistory/edih_csv_inc.php
*library/edihistory/edih_x12file_class.php
library/encounter_events.inc.php
library/FeeSheet.class.php
library/globals.inc.php
*library/gen_hcfa_1500.inc.php
*library/gen_x12_837.inc.php
*library/js/xl/dygraphs.js.php
*library/openflashchart/open-flash-chart.swf
library/options.inc.php
library/patient_tracker.inc.php
library/report.inc
*library/sanitize.inc.php
*public/assets/modified/dygraphs-2-0-0/README.md
*public/assets/modified/dygraphs-2-0-0/dygraph.css
*public/assets/modified/dygraphs-2-0-0/dygraph.js
*setup.php
sql/database.sql
sql/patch.sql
*templates/prescription/general_fragment.html
*templates/prescription/general_list.html
*version.php



Previous Patches

Previous OpenEMR version patches