mollie 2.2.1

Git tag 2.2.1
Security update

Made sure we fail gracefully when the right commerce order cannot be found on redirect.

Mollie for Drupal - Moderately critical - Faulty payment confirmation logic - SA-CONTRIB-2023-052

graphql 8.x-3.4

Git tag 8.x-3.4
Security update

Security release of GraphQL fixing a CSRF vulnerability and an access bypass in entity label handling, see:

  1. GraphQL - Moderately critical - Access bypass - SA-CONTRIB-2023-050
  2. GraphQL - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2023-051

We recommend the following additional security measures:

graphql 8.x-4.6

Git tag 8.x-4.6
Security update

Security release of GraphQL fixing a CSRF vulnerability and an access bypass in entity label handling, see:

  1. GraphQL - Moderately critical - Access bypass - SA-CONTRIB-2023-050
  2. GraphQL - Moderately critical - Cross Site Request Forgery - SA-CONTRIB-2023-051

We recommend the following additional security measures:

paragraphs_admin 8.x-1.5

Git tag 8.x-1.5
Security update

See also Paragraphs admin - Moderately critical - - SA-CONTRIB-2023-049.

  • 179670: Unauthorized Access to admin data

mail_login 8.x-2.9

Git tag 8.x-2.9
Security update
Bug fixes

Changelog

Changes since 8.x-2.8

  • Flood control not blocking users correctly.
  • Issue #3387222 Unexpected error too few arguments after update to 8.x-2.8

entitycache 7.x-1.7

Git tag 7.x-1.7
Security update

Fixes SA-CONTRIB-2023-046.

Pages

Subscribe with RSS Subscribe to RSS - Security update