This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement and notes below:

Drupal core - Cross-Site Scripting- SA-CORE-2019-004
Sites on 8.5.x or earlier should update immediately to Drupal 8.5.14 instead, and plan to update to the latest 8.6.x release before May 2019 (when 8.7.0 is released and 8.5.x security coverage ends).

Comments

lexsoft created an issue. See original summary.

  • lexsoft committed cdf00de on 8.x-2.x 
    Issue #3042008: Drupal [CORE] Security Update

  • lexsoft committed d7b229c on 8.x-1.x 
    Issue #3042008: Drupal [CORE] Security Update

  • lexsoft committed a77b93b on 8.x-1.x 
    Issue #3042008: Drupal [CORE] Security Update

  • lexsoft committed 1e5d324 on 8.x-2.x 
    Issue #3042008: Drupal [CORE] Security Update

  • lexsoft committed 5de32c3 on 8.x-2.x 
    Issue #3042008: Drupal [CORE] Security Update

  • lexsoft committed 1877237 on 8.x-2.x 
    Issue #3042008: Drupal [CORE] Security Update

  • lexsoft committed 18d6874 on 8.x-2.x 
    Issue #3042008: Drupal [CORE] Security Update

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.