moneysuite 7.x-10.4

Git tag 7.x-10.4
Security update

Fixes MoneySuite - Moderately critical - Access bypass - SA-CONTRIB-2017-085

bootstrap_carousel 7.x-1.2

Git tag 7.x-1.2
Security update

Fixes bootstrap_carousel - Moderately critical - Cross Site Scripting - SA-CONTRIB-2017-088

Added sanitization for carousel image alt attribute and caption in "node--bootstrap_carousel.tpl.php".
Fixed by @tatarbj

unpublished_404 7.x-1.1

Git tag 7.x-1.1
Security update
Bug fixes

See Unpublished 404 - Critical - Unsupported - SA-CONTRIB-2017-021

services_sso_client 7.x-1.6

Git tag 7.x-1.6
Security update

Fixes Services single sign-on client - Critical - Cross-site scripting - SA-CONTRIB-2017-087

config_perms 8.x-1.1

Git tag 8.x-1.1
Security update
Insecure

Fixes Custom Permissions - Moderately critical - Access bypass - SA-CONTRIB-2017-083

permissions_by_term 8.x-1.35

Git tag 8.x-1.35
Security update
Bug fixes

Fixes Permissions by Term - Moderately critical - Access bypass - SA-CONTRIB-2017-082

Implemented node access changes and removed deprecated code. PbT won't handle any nodes now for which it is not responsible. Any unpublished nodes with no taxonomy term permissions and similar will not gain any node access record from PbT. Run the "update.php" file or "drush updb" on updating.

Pages

Subscribe with RSS Subscribe to RSS - Security update