commerce_wedeal 7.x-1.3

Git tag 7.x-1.3
Security update

See SA-CONTRIB-2015-034 - Commerce WeDeal - Open Redirect

node_invite 6.x-2.5

Git tag 6.x-2.5
Security update

See SA-CONTRIB-2015-032 - Node Invite - Multiple vulnerabilities

aws_amazon 7.x-1.3

Git tag 7.x-1.3
Security update

See SA-CONTRIB-2015-030 - Amazon AWS - Access bypass

gd_infinite_scroll 7.x-1.4

Git tag 7.x-1.4
Security update

This release include only the fix for the security issue :

SA-CONTRIB-2015-031 - GD Infinite Scroll - Multiple vulnerabilites

There's no need to run update.php.
The cache_menu needs to be flushed.

qscience_profile 7.x-1.8

Git tag 7.x-1.8
Security update

A vulnerability (see SA-CONTRIB-2015-025 - Patterns - Cross Site Request Forgery (CSRF)) was discovered by @Pere Orga (Drupal Security team) in Patterns 7.x-2.1, one of the contributed modules which is used in this distribution . The issue is solved in versions >= 7.x-1.8 of QScience.
Websites running versions of QScience <= 7.x-1.7 should update the patterns module to >= 7.x-2.2 or update the QScience distribution to >= 7.x-1.8.

patterns_profile 7.x-2.5

Git tag 7.x-2.5
Security update

A vulnerability (see SA-CONTRIB-2015-025 - Patterns - Cross Site Request Forgery (CSRF)) was discovered by @Pere Orga (Drupal Security team) in Patterns 7.x-2.1, one of the contributed modules which is used in the 7.x-2.x branch of distribution . The issue is solved in versions >= 7.x-2.5 of Patterns Profile.
Websites running versions of Patterns Profile <= 7.x-2.4 should update the patterns module to >= 7.x-2.2 or update the Patterns Profile distribution to >= 7.x-2.5.

Pages

Subscribe with RSS Subscribe to RSS - Security update