Fixes Wetkit Omega - Moderately Critical - Access Bypass - SA-CONTRIB-2017-012
See the changelog.md file.
Update / Release Cycle
Please always remember to only follow this upgrade process as this module is part of a distribution.
Fixes Storage API stream wrappers - Moderately Critical - Access bypass - SA-CONTRIB-2017-010
Fix security issue in nusoap library.
Fixed SA-CONTRIB-2016-013 (see https://www.drupal.org/node/2730827).
Fixes XSS vulnerability when using the "Include term description" option with exposed taxonomy filters. See SA-CONTRIB-2017-009.
This releases updates and fixes the dependency of a third party library Guzzle 5 to Guzzle 6.
In addition to the news page and sub-tabs, all security announcements are posted to an email list. To subscribe to email: log in, go to your user profile page and subscribe to the security newsletter on the Edit » My newsletters tab.
You can also get rss feeds for core, contrib, or public service announcements or follow @drupalsecurity on Twitter.
In order to report a security issue, or to learn more about the security team, please see the Security team handbook page.
If you are a Drupal developer, please read the handbook section on Writing secure code.
Drupal is a registered trademark of Dries Buytaert.