Fixes CAS - Moderately Critical - Information Disclosure - DRUPAL-SA-CONTRIB-2016-005
This release contains a security fix as well as various bug fixes and improvements. Below is a list of issues that are included in this release:
Fixes Embedded Media Field - Moderately Critical - Access Bypass - DRUPAL-SA-CONTRIB-2016-004
Changes since 6.x-2.6:
Please see the Updating Open Atrium guide!
IMPORTANT : Make a BACKUP of your database before applying any updates.
IMPORTANT : This is a security update for Open Atrium!
RedHen CRM - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2016-002
Changes since 7.x-1.10:
See Field Group - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2016-001
Changes since 7.x-1.4
Fixes Block Class- Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-175
In addition to the news page and sub-tabs, all security announcements are posted to an email list. To subscribe to email: log in, go to your user profile page and subscribe to the security newsletter on the Edit » My newsletters tab.
You can also get rss feeds for core, contrib, or public service announcements or follow @drupalsecurity on Twitter.
In order to report a security issue, or to learn more about the security team, please see the Security team handbook page.
If you are a Drupal developer, please read the handbook section on Writing secure code.
Drupal is a registered trademark of Dries Buytaert.