cms_updater 7.x-1.3

Git tag 7.x-1.3
Security update

Fixes CMS Updater - Moderately Critical - Multiple vulnerabilities - SA-CONTRIB-2015-150
Access bypass
Cross Site Scripting (XSS)

sqlsrv 7.x-2.0

Git tag 7.x-2.0
Security update

See Drupal 7 driver for SQL Server and SQL Azure - Moderately Critical - SQL Injection - SA-CONTRIB-2015-148

sqlsrv 7.x-1.4

Git tag 7.x-1.4
Security update

See Drupal 7 driver for SQL Server and SQL Azure - Moderately Critical - SQL Injection - SA-CONTRIB-2015-148

restful 7.x-1.3

Git tag 7.x-1.3
Security update
Insecure

RESTful - Moderately Critical - Access bypass - SA-CONTRIB-2015-147

[BUGFIX] Prevent page cache poisoning

67a32c0 by Mateu Aguiló Bosch
Prevent page cache poisoning when using authentication providers
that are not session cookie based.

See RESTful - Moderately Critical - Access bypass - SA-CONTRIB-2015-147.

paragraphs 7.x-1.0-rc2

Git tag 7.x-1.0-rc2
Security update
Bug fixes
Insecure
  • Fix Issue #2504885: Operations exist for paragraph editing even if field ui module is disabled
  • Fix Issue #2510654: Panelizer: notice when panelizer on node enabled, disabled on paragraphs
  • Fix Issue #2542066: Add paragraphs bundle class to row in backend
  • Fix Issue #2549453: XSS vulnerability on paragraph bundle name (overview page)
  • Fix Issue #2535074: Increase the number of weights (delta) when sorting available bundles
  • Fix: dependency loading in paragraphs_test which made tests fail

fieldable_panels_panes 7.x-1.7

Git tag 7.x-1.7
Security update
Insecure

Fieldable Panels Panes - Less Critical - Access bypass - SA-CONTRIB-2015-145

This includes a single change and is a recommended update for all sites using the module:

Pages

Subscribe with RSS Subscribe to RSS - Security update