Release info

Created by: deekayen
Created on: June 19, 2013 - 16:54
Last updated: November 7, 2013 - 22:03
Core compatibility: 7.x
Release type: Security update, Bug fixes

Release notes

Resolve a condition where a specially crafted username could bypass Login Security's validation. - SA-CONTRIB-2013-053 - Login Security - Multiple Vulnerabilities

Removes the option for login delay, because it could lead to a denial of service.

Bugfix: #1966960: login_security incorrectly calls "drupal_get_messages" without FALSE as the second parameter