select2widget 7.x-2.9

Git tag 7.x-2.9
Security update

See Select2 Field Widget - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-173

tfa 7.x-2.0-beta3

Git tag 7.x-2.0-beta3
Security update
Bug fixes
Insecure

Beta 3 release of TFA module for Drupal 7 fixes minor security risk. Read about risk and mitigating factors at https://www.drupal.org/node/2628736.

This release makes no schema or plugin compatibility changes, upgrade is recommended for all sites running TFA

Changes since 7.x-2.0-beta2:

apachesolr 6.x-3.1

Git tag 6.x-3.1
Security update

SA-CONTRIB-2015-170 by Dave Reid, theapi: fix for anonymous users can delete Solr environments that are not default.

apachesolr 7.x-1.8

Git tag 7.x-1.8
Security update

SA-CONTRIB-2015-170 by Dave Reid, theapi: fix for anonymous users can delete Solr environments that are not default.

chatroom 7.x-2.2

Git tag 7.x-2.2
Security update

See Chat Room - Moderately Critical - Access Bypass - SA-CONTRIB-2015-169

  • Issue #1962092: Name of anonymous user not sent to server.
  • Issue #1940470: Remove chatroom_add_js() call from hook_init.
  • Issue #1993674: Error when user name is empty.
  • Issue #2192963 by brtamas: Empty timezone produces error.
  • Issue #2193449 by Raphael Apard: Wrong table name on method getMessageCount()
  • Issue #2616940 by aditya_anurag: Missing @return and @param tag in PHPDoc comment

restful 7.x-1.6

Git tag 7.x-1.6
Security update
Insecure

See RESTful - Less Critical - Access bypass - SA-CONTRIB-2015-167

Pages

Subscribe with RSS Subscribe to RSS - Security update