bootstrap 7.x-3.22

Git tag 7.x-3.22
Security update
Bug fixes

Security Advisories

Changes since 7.x-3.21 (3 commits):

readonlymode 8.x-1.0

Git tag 8.x-1.0
Security update

The first official release of the Read Only Mode module.

This release addresses #3012113: Messages set during form_alter are not properly sanitised leading to an XSS vulnerability so it is marked as a security update.

paragraphs 8.x-1.5

Git tag 8.x-1.5
Security update
Insecure

The module didn't sufficiently check access to create new paragraph entities which can cause access bypass issues when used in combination with other contributed modules.

See https://www.drupal.org/sa-contrib-2018-073

This release included 3 minor commits that were accidentally omitted with the last 8.x-1.4 release.

session_limit 8.x-1.0-beta3

Git tag 8.x-1.0-beta3
Security update

Security update. Session Limit - Critical - Insecure Session Management - SA-CONTRIB-2018-072

session_limit 7.x-2.3

Git tag 7.x-2.3
Security update

Security update. Session Limit - Critical - Insecure Session Management - SA-CONTRIB-2018-072

decoupled_router 8.x-1.2

Git tag 8.x-1.2
Security update

Changes since 8.x-1.1:

  • fix: proper entity API handling for entity loads

This release fixed an Access bypass security issue. See SA-CONTRIB-2018-071 for details.

Pages

Subscribe with RSS Subscribe to RSS - Security update