Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
A vulnerability (see SA-CONTRIB-2015-025 - Patterns - Cross Site Request Forgery (CSRF)) was discovered by @Pere Orga (Drupal Security team) in Patterns 7.x-2.1, one of the contributed modules which is used in this distribution . The issue is solved in versions >= 7.x-1.8 of QScience.
Websites running versions of QScience <= 7.x-1.7 should update the patterns module to >= 7.x-2.2 or update the QScience distribution to >= 7.x-1.8.
New version of QScience:
- Updated all the contrib modules with security issues.
- Updated rest of contrib modules
- Modules that used to be custom and are now contrib, have been removed and included in the make file (d2d, d2dsearch, d2d_passport, qscience_d2dsearch).
New version of QScience including:
- Updated all the "custom" modules with the latest version from github.
- New ones customs modulesincluded: d2d_passport, d2dsearch, qscience_d2dsearch
- Updated referenced to contrib modules: patterns 7.x-2.1 and patterns_client 7.x-1.1
- Added new contrib modules: background_process and progress (dependencies of d2dsearch)
New version of the QScience distribution including all the features described in the manual to be sent to the EC.
- Updating URL of the official Patterns server.
- Added module to allow sharing the configuration in one click.
- Included stable versions at drupal.org of patterns and patterns_client.
- Minor fixes related to bugs in the description of some of the installation tasks.