Drupal: Security update

radix 7.x-3.8

6 days 7 hours ago
Release notes

Fixes Radix - Moderately critical - Cross site scripting - SA-CONTRIB-2020-001

Changes since 7.x-3.7:

Download Size md5 hash radix-7.x-3.8.tar.gz 947.82 KB 26a16455f6b0c872c638b16d43c079d0 radix-7.x-3.8.zip 990.85 KB 2667527fd1d5c15f53e69b99a5f55518 Last updated: 15 Jan 2020 at 17:53 UTCOfficial release from tag: 7.x-3.8Core compatibility: 7.xRelease type: Security updateBug fixesPackaged Git sha1: eeb01a65ad1fb519af56ca13b5eac623cabaf9fe
dsnopek

drupal 8.8.1

1 month ago
Release notes

Maintenance and security release of the Drupal 8 series.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement:

No other fixes are included.

Important update information
  • The pear/archive_tar project has been updated from version 1.4.6 (Drupal 8.7) and 1.4.8 (Drupal 8.8) to version 1.4.9 in order to mitigate URL HERE.
  • No changes have been made to the .htaccess, web.config, robots.txt or default settings.php files in this release, so upgrading custom versions of those files is not necessary if your site is already on the previous release.

The packaged tar and zip files that were available from 2019-12-18 20:53:00 UTC until 2019-12-18 21:13:00 UTC were erroneously published with drupal 8.8.0 packaged inside. If you downloaded a tarball during that window, you should re-download it and upgrade again using the new tarball.

Download Size md5 hash drupal-8.8.1.tar.gz 18.56 MB 0e0af2652e6ad4da27c0f7bf35c5e1e1 drupal-8.8.1.zip 29.52 MB 82a7497cd6607c2d2c26e542a8b1e994 Last updated: 18 Dec 2019 at 19:03 UTCOfficial release from tag: 8.8.1Core compatibility: 8.xRelease type: Security updateShort description: Actively maintained with new features and backwards-compatible improvements every six months. Use this version for the best compatibility with future releases.Packaged Git sha1: db022d572ec50469c113a9ea33abe95ba35bc48a
mlhess

drupal 8.7.11

1 month ago
Release notes

Maintenance and security release of the Drupal 8 series.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement:

No other fixes are included.

Versions of Drupal 8 prior to 8.7.x are end-of-life and do not receive security coverage.

Important update information
  • The pear/archive_tar project has been updated from version 1.4.6 (Drupal 8.7) and 1.4.8 (Drupal 8.8) to version 1.4.9 in order to mitigate Drupal core - Critical - Multiple vulnerabilities - SA-CORE-2019-012

  • No changes have been made to the .htaccess, web.config, robots.txt or default settings.php files in this release, so upgrading custom versions of those files is not necessary if your site is already on the previous release.

Download Size md5 hash drupal-8.7.11.tar.gz 17.07 MB bcf01576c060dfb7de0ec1f7125f7bbe drupal-8.7.11.zip 27.3 MB 776e1e47c53d2bda7679f74fb2dc2ca3 Last updated: 18 Dec 2019 at 19:03 UTCOfficial release from tag: 8.7.11Core compatibility: 8.xRelease type: Security updateShort description: Actively maintained with new features and backwards-compatible improvements every six months. Use this version for the best compatibility with future releases.Packaged Git sha1: a9f11fbd8dc67b651668061e98e23d6503da400d
mlhess

drupal 7.69

1 month ago
Release notes

Maintenance and security release of the Drupal 7 series.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement:

No other fixes are included.

Important update information

No changes have been made to the .htaccess, web.config, robots.txt, or default settings.php files in this release, so upgrading custom versions of those files is not necessary.

Download Size md5 hash drupal-7.69.tar.gz 3.16 MB 292290a2fb1f5fc919291dc3949cdf7c drupal-7.69.zip 3.67 MB a2061232aac4f9108cf366a7348ad8aa Last updated: 18 Dec 2019 at 19:03 UTCOfficial release from tag: 7.69Core compatibility: 7.xRelease type: Security updateShort description: Supported until November 2021. Use this version for sites already running Drupal 7.Packaged Git sha1: 2e3449d8b8d15476b6c32f6e8771aad43fc5ca69
mlhess

webform 7.x-4.21

1 month 1 week ago
Release notes

This release resolves SA-CONTRIB-2019-096.

Changes since 7.x-4.20:

Download Size md5 hash webform-7.x-4.21.tar.gz 246.21 KB c405d4d20c5a4c7f2e7b7efe27715a7e webform-7.x-4.21.zip 297.11 KB e2f98f7148d55ee1e3d93ee21d4f1872 Last updated: 11 Dec 2019 at 19:33 UTCOfficial release from tag: 7.x-4.21Core compatibility: 7.xRelease type: Security updateShort description: Resolves SA-CONTRIB-2019-096.Packaged Git sha1: 97ce29f6d36ff6ea9389fd493772479e421ba7b5
Liam Morland

webform 7.x-3.29

1 month 1 week ago
Release notes

This release resolves SA-CONTRIB-2019-096.

Changes since 7.x-3.28:

Download Size md5 hash webform-7.x-3.29.tar.gz 136.72 KB 70c27c2497f27d2dce90090f9b4a602a webform-7.x-3.29.zip 170.06 KB e9c21eddda371f985e3b9f5d734ab414 Last updated: 11 Dec 2019 at 19:33 UTCOfficial release from tag: 7.x-3.29Core compatibility: 7.xRelease type: Security updateShort description: Resolves SA-CONTRIB-2019-096.Packaged Git sha1: 39f6a14cc329639378447093383b2584252d4b35
Liam Morland

taxonomy_access_fix 8.x-2.7

1 month 1 week ago
Release notes

This is a security release resolving issues for the following security advisory:

Additionally, a few low-risk maintenance fixes are part of this release.

There are no new features in this release.

Please note: There are database changes in this release. Users upgrading from 8.x-2.6 or earlier releases must apply database updates (e.g. run update.php) for the changes to take effect.

A new per-vocabulary permission View terms in vocabulary has been introduced in version 8.x-2.6. Users updating from versions prior to 8.x-2.6 may want to grant this permission to user roles, which should be able to view published Taxonomy Term entities.

My sincere thanks go out (in alphabetical order) to alex_optim, alonaoneill, Anybody, bblake, chipway, ckaotik, dani3lr0se, greggles and DamienMcKenna and the Drupal Security Team, guedressel, jsonlttl, Maurice M., pifagor, recrit, Ronak.addweb, tarasich, voleger and – last but not least – volkswagenchick for contributing patches, bug reports or other valuable feedback to this release.

Changes since 8.x-2.6:

Download Size md5 hash taxonomy_access_fix-8.x-2.7.tar.gz 15.39 KB 80f87476c2d32ccf9796acb55678b1c6 taxonomy_access_fix-8.x-2.7.zip 21.43 KB 25476a5f901ecb7cf1f3c6c76f011f60 Last updated: 11 Dec 2019 at 16:13 UTCOfficial release from tag: 8.x-2.7Core compatibility: 8.xRelease type: Security updateBug fixesShort description: Resolves SA-CONTRIB-2019-093.Packaged Git sha1: a224cc61f9fb7b0a56a6a9082f71c74081b62d20
FeyP

smart_trim 8.x-1.2

1 month 1 week ago
Release notes

Smart Trim 8.x-1.2
------------------
Resolves SA-CONTRIB-2019-092.
Issue by ckaotik: Trimmed summary markup.
Issue #2995557 by jkaeser, slefevre@ccad.edu: Extra space characters after HTML stripping
Issue #3042672 by Phil Wolstenholme: Drupal 9 Deprecated Code Report
Issue #2169583 by danbohea, MegaChriz, thewilkybarkid: Trim certain punctuation from the end of truncated text output before appending suffix
Issue #2994386 by Daniel Korte: Use OOP translate function instead of procedural one in formatter
Issue #2997706 by deepanker_bhalla, dhirendra.mishra, msankhala, markie: Coding standard
Issue #2875378 by caldenjacobs, timwood: Strip figcaption when Strip HTML is selected (8.x-1.x)
Issue #3031786 by mitrpaka: Use mb_* functions instead of Unicode::* methods
PHPCS fixes
Issue #2941492 by Dan Dalpiaz, sardara: Additional options checkbox do not appear to save
Issue #2983974 by chipway: Apply new {project}:{module} format for dependencies in info.yml

Download Size md5 hash smart_trim-8.x-1.2.tar.gz 14.51 KB 9bedb511c7f9d745752458e4cdbe057d smart_trim-8.x-1.2.zip 19.02 KB 9dc3c079e2cace9b6b55e9f2e233ff58 Last updated: 11 Dec 2019 at 15:38 UTCOfficial release from tag: 8.x-1.2Core compatibility: 8.xRelease type: Security updateBug fixesNew featuresShort description: Fixes SA-CONTRIB-2019-092, minor updates and feature requestsPackaged Git sha1: 675b75fb1ba8e04c40ca2b4bd0da53c7d388028a
markie

modal_page 8.x-2.5

1 month 1 week ago
Release notes

This release resolves SA-CONTRIB-2019-094.

Download Size md5 hash modal_page-8.x-2.5.tar.gz 24.45 KB efa45a9cefa432827e54bb0682554fcf modal_page-8.x-2.5.zip 36.95 KB bf332f2e92501311acbc835d4f3ecb66 Last updated: 11 Dec 2019 at 11:58 UTCOfficial release from tag: 8.x-2.5Core compatibility: 8.xRelease type: Security updateBug fixesShort description: Resolves SA-CONTRIB-2019-094.Packaged Git sha1: 0d2c22e8e1b74095034525e9744efdff56904405
RenatoG

field_slideshow 7.x-1.83

1 month 1 week ago
Release notes

Resolves SA-CONTRIB-2019-082.

Other changes:

  • #2043641, php errors if libraries_get_path(jquery.jcarousel) is not defined
  • #2007618, recommend to download imagesloaded 2.1.2 until jquery_update gives possibility to use jquery 1.9
  • #2333991 Ability to make a slideshow of rendered field collection entities
Download Size md5 hash field_slideshow-7.x-1.83.tar.gz 19.48 KB b36bf387f49e74dae669b2ce5c23072e field_slideshow-7.x-1.83.zip 22.26 KB 1470614d263ae02793cc65fc883f79f0 Last updated: 9 Dec 2019 at 13:18 UTCOfficial release from tag: 7.x-1.83Core compatibility: 7.xRelease type: Security updateBug fixesShort description: Fixes SA-CONTRIB-2019-082, and three other issues.Packaged Git sha1: fe948b367ef1774e43251d12506762235f9a5bb4
lamp5

faq 7.x-1.2

1 month 3 weeks ago
vijaycs85

nodequeue 7.x-2.2

1 month 4 weeks ago
Release notes

This release contains:

Download Size md5 hash nodequeue-7.x-2.2.tar.gz 400.59 KB 768804ccb2fa63e73c03f62749c72e3d nodequeue-7.x-2.2.zip 419.74 KB 334d3fafa88156d160e1150d59919fb8 Last updated: 22 Nov 2019 at 04:08 UTCOfficial release from tag: 7.x-2.2Core compatibility: 7.xRelease type: Security updateBug fixesNew featuresShort description: Security Fix, Interface improvementsPackaged Git sha1: 05371b3fee34a71f88279827bc90c328670709ae
jenlampton

admin_views 7.x-1.7

2 months ago
Release notes
  1. Fix for SA-CONTRIB-2019-076
Download Size md5 hash admin_views-7.x-1.7.tar.gz 21.16 KB 40246a011f90f40233eab2e953f2ec9c admin_views-7.x-1.7.zip 31.29 KB f3a9b139d1bf98ffe7df5a8d721e8f91 Last updated: 19 Nov 2019 at 19:38 UTCOfficial release from tag: 7.x-1.7Core compatibility: 7.xRelease type: Security updateShort description: Fix SA-CONTRIB-2019-076Packaged Git sha1: f141cd269817a0f652bc28206d6d67b5e83dfd6a
vijaycs85

social 8.x-6.5

2 months 2 weeks ago
Release notes

This fixes a bypass found for the social_magic_login for more info check:
Open Social - Critical - Insecure Session Management - SA-CONTRIB-2019-075

Download Size md5 hash social-8.x-6.5-core.tar.gz 30.96 MB 1bc50ef8956aca773bda90e201fbb11c social-8.x-6.5-core.zip 45.9 MB 364d85cdf7bcf46e4a5342fff97f49c5 social-8.x-6.5-no-core.tar.gz 13.9 MB 83070f97820943f4f243542bbc08e7ce social-8.x-6.5-no-core.zip 18.22 MB e478e819c35305387e81e86414427a2f social-8.x-6.5.tar.gz 6.42 MB 6ad301d6d8780a01f10e5f1c0e38f905 social-8.x-6.5.zip 8.09 MB 56439359c570a309627320823a4cc19f Last updated: 6 Nov 2019 at 05:53 UTCOfficial release from tag: 8.x-6.5In this package Project Version Status Bootstrap 8.x-3.20 Update available1 patch applied Dynamic Entity Reference 8.x-1.7 Update available Embed 8.x-1.0 Update available Entity Reference Revisions 8.x-1.6 Update available Field Group 8.x-3.0-beta1 Update available Flag 8.x-4.0-alpha3 Update available1 patch applied Group 8.x-1.0-rc2 Update available6 patches applied Like & Dislike 8.x-1.0-alpha2 Update available1 patch applied Mail System 8.x-4.1 Update available Message 8.x-1.0-rc2 Update available1 patch applied Metatag 8.x-1.9 Update available Paragraphs 8.x-1.8 Update available Pathauto 8.x-1.4 Update available Private Message 8.x-1.2 Update available2 patches applied Profile 8.x-1.0-rc6 Update available Redirect 8.x-1.4 Update available Search API 8.x-1.14 Update available Shariff Social Media Buttons 8.x-1.5 Update available Token 8.x-1.5 Update available Address 8.x-1.7 Up to date Admin Toolbar 8.x-1.27 Up to date Block field 8.x-1.0-alpha8 Up to date1 patch applied Chaos Tool Suite (ctools) 8.x-3.2 Up to date Configuration Update Manager 8.x-1.6 Up to date Crop API 8.x-1.5 Up to date1 patch applied CSV Serialization 8.x-2.0-beta1 Up to date Data Policy 8.x-1.0-beta6 Up to date Devel 8.x-2.1 Up to date Entity API 8.x-1.0-rc3 Up to date EXIF Orientation 8.x-1.0 Up to date Features 8.x-3.8 Up to date File metadata manager 8.x-1.1 Up to date Image Effects 8.x-2.3 Up to date Image Widget Crop 8.x-2.2 Up to date1 patch applied Lazy-load 8.x-2.0 Up to date2 patches applied Link CSS 8.x-1.x-dev Up to date Override Node Options 8.x-2.4 Up to date Redirect 403 to User Login 8.x-1.1 Up to date1 patch applied Social API 8.x-1.1 Up to date Social Auth 8.x-1.0 Up to date Swift Mailer 8.x-1.0-beta2 Up to date1 patch applied URL Embed 8.x-1.0-alpha1 Up to date3 patches applied Views Bulk Operations (VBO) 8.x-2.5 Up to date Views Infinite Scroll 8.x-1.6 Up to date Voting API 8.x-3.0-beta1 Up to date Patches applied in this package Project Patch issue Patch URL Block field #2978883: Add proper alter hooks for field rendering https://www.drupal.org/files/issues/2018-06-11/block_field-add-proper-alter-hooks-for-field-rendering-2978883-2.patch Bootstrap #3021413: Dropdown toggle variable ignored when using links__dropbutton https://www.drupal.org/files/issues/2018-12-19/dropdown-without-default-button-3021413-2.patch Crop API #2830768: Automated crop integration https://www.drupal.org/files/issues/2018-12-16/2830768-crop-automated_crop_integration-45.patch Drupal core #2974925: Default 'rid' value for Change User Roles causes an illegal error https://www.drupal.org/files/issues/2018-05-24/2974925-default-rid-config-causes-illegal-error.patch Drupal core #2528214: "Restrict images to this site" blocks image style derivatives https://www.drupal.org/files/issues/2018-10-26/2528214-47.patch Drupal core #2580551: Optimize getCommentedEntity() https://www.drupal.org/files/issues/2018-12-28/2580551-72.patch Drupal core #3007424: Multiple usages of FieldPluginBase::getEntity do not check for NULL, leading to WSOD https://www.drupal.org/files/issues/2019-05-06/drupal-Multiple-usages-of-FieldPluginBase-getEntity-3007424-15.patch Drupal core #2844190: Color module - Make preview_html optional https://www.drupal.org/files/issues/color-optional-html-preview-2844190-2.patch Drupal core #994360: #states cannot check/uncheck 'radios' and 'checkboxes' elements https://www.drupal.org/files/issues/drupal-994360-74-states-checkboxes-checked.patch Flag #2723703: Add relationship to flagged entities when Flagging is base table https://www.drupal.org/files/issues/2723703_31.patch Group #3010896: Don't try to re-save deleted entities https://www.drupal.org/files/issues/2018-11-01/3010896-02.patch Group #3020883: Use VBO together with group permission https://www.drupal.org/files/issues/2018-12-18/vbo-and-group-permission-3020883-5.patch Group #2774827: Get a token of a node's parent group to create a pathauto pattern https://www.drupal.org/files/issues/2018-12-19/group-2774827-41-gnode-tokens.patch Group #3054534: group_type and content_plugin of group_content_type are translatable https://www.drupal.org/files/issues/2019-05-14/group-content_schema-3054534-2-D8.patch Group #2718195: Add a computed field for entity's group(s) https://www.drupal.org/files/issues/add-computed-field-without-FieldItemListComputedInterface-2718195-34.patch Group #2943564: Separate group overview from 'administer group' permission https://www.drupal.org/files/issues/group-2943564-2.patch Image Widget Crop #3032584: Vertical Tabs get rendered incorrectly https://www.drupal.org/files/issues/2019-02-13/3032584-verticaltabs-theme-override-removal-2.patch Lazy-load #3056630: Getting enabled lazy configuration out of the database instead of the active config conflicts with OVerrides https://www.drupal.org/files/issues/2019-05-23/3056630-2.patch Lazy-load #3071331: Messages rendered on cron with enabled filter format return InvalidArgumentException https://www.drupal.org/files/issues/2019-07-30/3071331-lazy-cron-empty-path-2.patch Like & Dislike #2848080: Preview of nodes fail on trying to build like widget https://www.drupal.org/files/issues/2848080-2-preview-fails-on-node.patch Message #3000026: Notice: Undefined index: value in MessageTemplate->getText() https://www.drupal.org/files/issues/2018-09-16/undefined-index-value-3000026-2.patch Private Message #2978324: getThreadIdsForUser should be ordered DESC because it will not show message after the count https://www.drupal.org/files/issues/2018-06-08/2978324-getthreads-sort-order-2.patch Private Message #2977310: Own send messages are shown as new messages https://www.drupal.org/files/issues/2019-02-05/private_message-message_count-2977310-8_0.patch Redirect 403 to User Login #3010747: r4032login should perform access check for /user/login as anonymous user https://www.drupal.org/files/issues/2018-11-01/3010747-3-perform-access-check-as-an-user.patch Swift Mailer #2948607: Error after updating to beta2 https://www.drupal.org/files/issues/2018-03-26/2948607-fix-filter-format-1.patch URL Embed #2867668: Add a caching layer for oembed data https://www.drupal.org/files/issues/2018-03-16/url_embed-caching-layer-2867668-17.patch URL Embed #2953591: Translate dialog title https://www.drupal.org/files/issues/2018-03-16/url_embed_translate_dialog_title-2953591-2.patch URL Embed #2871744: WSOD if wrong url (or network unavailable) with the filter Convert URLs to URLs embed https://www.drupal.org/files/issues/url_embed_WSOD_convert_url_to_embed-2871744-5.patch Release type: Security updateCore compatibility: 8.xPackaged Git sha1: cded1868efd4976076c2b6f52175fd48db81a0dd
ronaldtebrake

social 8.x-7.1

2 months 2 weeks ago
Release notes

This fixes a bypass found for the social_magic_login for more info check:
Open Social - Critical - Insecure Session Management - SA-CONTRIB-2019-075

Download Size md5 hash social-8.x-7.1-core.tar.gz 31.25 MB 5ec50731f8b87f826fa8ce37a6420fd4 social-8.x-7.1-core.zip 46.27 MB c672f5f46be63486020aac4835987323 social-8.x-7.1-no-core.tar.gz 14.19 MB 2bac4c88fbd716902e2960ff6ddf021b social-8.x-7.1-no-core.zip 18.58 MB b24c2c7b1a69ff3bc7b7545bc9c1ede7 social-8.x-7.1.tar.gz 6.63 MB 864b66ef2f13b641e309df014c1c3d4c social-8.x-7.1.zip 8.34 MB 65883d58dae4fbe69b52c45baa233ac4 Last updated: 6 Nov 2019 at 05:53 UTCOfficial release from tag: 8.x-7.1In this package Project Version Status Bootstrap 8.x-3.20 Update available1 patch applied Dynamic Entity Reference 8.x-1.7 Update available Embed 8.x-1.0 Update available Entity Reference Revisions 8.x-1.6 Update available Field Group 8.x-3.0-beta1 Update available Flag 8.x-4.0-alpha3 Update available1 patch applied Group 8.x-1.0-rc4 Update available7 patches applied Like & Dislike 8.x-1.0-alpha2 Update available1 patch applied Mail System 8.x-4.1 Update available Message 8.x-1.0-rc2 Update available1 patch applied Metatag 8.x-1.9 Update available Paragraphs 8.x-1.8 Update available Pathauto 8.x-1.4 Update available Private Message 8.x-1.2 Update available2 patches applied Profile 8.x-1.0-rc6 Update available Redirect 8.x-1.4 Update available Search API 8.x-1.14 Update available Shariff Social Media Buttons 8.x-1.5 Update available Token 8.x-1.5 Update available Views Bulk Operations (VBO) 8.x-3.2 Update available1 patch applied Address 8.x-1.7 Up to date Admin Toolbar 8.x-1.27 Up to date Better Exposed Filters 8.x-3.0-alpha6 Up to date Block field 8.x-1.0-alpha8 Up to date1 patch applied Chaos Tool Suite (ctools) 8.x-3.2 Up to date Configuration Update Manager 8.x-1.6 Up to date Crop API 8.x-1.5 Up to date1 patch applied CSV Serialization 8.x-2.0-beta1 Up to date Data Policy 8.x-1.0-beta6 Up to date Devel 8.x-2.1 Up to date Entity API 8.x-1.0-rc3 Up to date EXIF Orientation 8.x-1.0 Up to date Features 8.x-3.8 Up to date File metadata manager 8.x-1.1 Up to date Image Effects 8.x-2.3 Up to date Image Widget Crop 8.x-2.2 Up to date1 patch applied Lazy-load 8.x-2.0 Up to date2 patches applied Link CSS 8.x-1.x-dev Up to date Override Node Options 8.x-2.4 Up to date Redirect 403 to User Login 8.x-1.1 Up to date1 patch applied Social API 8.x-1.1 Up to date Social Auth 8.x-1.0 Up to date Swift Mailer 8.x-1.0-beta2 Up to date1 patch applied URL Embed 8.x-1.0-alpha1 Up to date3 patches applied Views Infinite Scroll 8.x-1.6 Up to date Voting API 8.x-3.0-beta1 Up to date Patches applied in this package Project Patch issue Patch URL Block field #2978883: Add proper alter hooks for field rendering https://www.drupal.org/files/issues/2018-06-11/block_field-add-proper-alter-hooks-for-field-rendering-2978883-2.patch Bootstrap #3021413: Dropdown toggle variable ignored when using links__dropbutton https://www.drupal.org/files/issues/2018-12-19/dropdown-without-default-button-3021413-2.patch Crop API #2830768: Automated crop integration https://www.drupal.org/files/issues/2018-12-16/2830768-crop-automated_crop_integration-45.patch Drupal core #2974925: Default 'rid' value for Change User Roles causes an illegal error https://www.drupal.org/files/issues/2018-05-24/2974925-default-rid-config-causes-illegal-error.patch Drupal core #2528214: "Restrict images to this site" blocks image style derivatives https://www.drupal.org/files/issues/2018-10-26/2528214-47.patch Drupal core #2580551: Optimize getCommentedEntity() https://www.drupal.org/files/issues/2018-12-28/2580551-72.patch Drupal core #3007424: Multiple usages of FieldPluginBase::getEntity do not check for NULL, leading to WSOD https://www.drupal.org/files/issues/2019-05-06/drupal-Multiple-usages-of-FieldPluginBase-getEntity-3007424-15.patch Drupal core #2844190: Color module - Make preview_html optional https://www.drupal.org/files/issues/color-optional-html-preview-2844190-2.patch Drupal core #994360: #states cannot check/uncheck 'radios' and 'checkboxes' elements https://www.drupal.org/files/issues/drupal-994360-74-states-checkboxes-checked.patch Flag #2723703: Add relationship to flagged entities when Flagging is base table https://www.drupal.org/files/issues/2723703_31.patch Group #3010896: Don't try to re-save deleted entities https://www.drupal.org/files/issues/2018-11-01/3010896-02.patch Group #2774827: Get a token of a node's parent group to create a pathauto pattern https://www.drupal.org/files/issues/2018-12-19/group-2774827-41-gnode-tokens.patch Group #3029849: Statically cache gnode_node_grants() https://www.drupal.org/files/issues/2019-01-31/gnode-access-grants-3029849-2.patch Group #3029878: Statically cache loadByEntity() https://www.drupal.org/files/issues/2019-01-31/gnode-loadbyentity-3029878-2.patch Group #3062380: After update to rc3 /admin/group view (groups list) is not found https://www.drupal.org/files/issues/2019-08-02/group-3062380-15.patch Group #3020883: Use VBO together with group permission https://www.drupal.org/files/issues/2019-10-09/vbo-and-group-permission-3020883-10.patch Group #2718195: Add a computed field for entity's group(s) https://www.drupal.org/files/issues/add-computed-field-without-FieldItemListComputedInterface-2718195-34.patch Image Widget Crop #3032584: Vertical Tabs get rendered incorrectly https://www.drupal.org/files/issues/2019-02-13/3032584-verticaltabs-theme-override-removal-2.patch Lazy-load #3056630: Getting enabled lazy configuration out of the database instead of the active config conflicts with OVerrides https://www.drupal.org/files/issues/2019-05-23/3056630-2.patch Lazy-load #3071331: Messages rendered on cron with enabled filter format return InvalidArgumentException https://www.drupal.org/files/issues/2019-07-30/3071331-lazy-cron-empty-path-2.patch Like & Dislike #2848080: Preview of nodes fail on trying to build like widget https://www.drupal.org/files/issues/2848080-2-preview-fails-on-node.patch Message #3000026: Notice: Undefined index: value in MessageTemplate->getText() https://www.drupal.org/files/issues/2018-09-16/undefined-index-value-3000026-2.patch Private Message #2978324: getThreadIdsForUser should be ordered DESC because it will not show message after the count https://www.drupal.org/files/issues/2018-06-08/2978324-getthreads-sort-order-2.patch Private Message #2977310: Own send messages are shown as new messages https://www.drupal.org/files/issues/2019-02-05/private_message-message_count-2977310-8_0.patch Redirect 403 to User Login #3010747: r4032login should perform access check for /user/login as anonymous user https://www.drupal.org/files/issues/2018-11-01/3010747-3-perform-access-check-as-an-user.patch Swift Mailer #2948607: Error after updating to beta2 https://www.drupal.org/files/issues/2018-03-26/2948607-fix-filter-format-1.patch URL Embed #2867668: Add a caching layer for oembed data https://www.drupal.org/files/issues/2018-03-16/url_embed-caching-layer-2867668-17.patch URL Embed #2953591: Translate dialog title https://www.drupal.org/files/issues/2018-03-16/url_embed_translate_dialog_title-2953591-2.patch URL Embed #2871744: WSOD if wrong url (or network unavailable) with the filter Convert URLs to URLs embed https://www.drupal.org/files/issues/url_embed_WSOD_convert_url_to_embed-2871744-5.patch Views Bulk Operations (VBO) #3042494: Trigger VBO Ajax action on jQuery checkbox change, not keyboard/mouse UI https://www.drupal.org/files/issues/2019-09-19/3042494-trigger-vbo-action-on-jquery-checkbox-change-5.patch Release type: Security updateCore compatibility: 8.xPackaged Git sha1: de3c4ac24a36b9043e0d53462f12aeba6708a342
ronaldtebrake

bat 8.x-1.2

3 months ago
Release notesContributors (1)

fietserwin

Jelle_S

larowlan

Changelog

Issues: 2 issues resolved.

Changes since 8.x-1.1:

Bug Security Update Download Size md5 hash bat-8.x-1.2.tar.gz 126.93 KB e94a6471289ff81c80f6b7221433d246 bat-8.x-1.2.zip 263.79 KB 801fec0cb60f723098b649d44cecf96b Last updated: 16 Oct 2019 at 16:13 UTCOfficial release from tag: 8.x-1.2Core compatibility: 8.xRelease type: Security updateBug fixesPackaged Git sha1: 1f52b11254df0f7f6c84da4f11e0a8ddeac8c415
greggles

img_annotator 8.x-1.2

3 months ago
Release notes

Security release

Original unsupport security advisory

Contributors (8)

Grimreaper, Pere Orga, David_Rothstein, abhaysaraf, greggles, rooby, mlhess, larowlan

Changelog

Issues: 1 issues resolved.

Changes since 8.x-1.1:

Task Download Size md5 hash img_annotator-8.x-1.2.tar.gz 15.96 KB 054ea1ab1e759ca98cd1d899d45a9d42 img_annotator-8.x-1.2.zip 23.84 KB 0b99d6bdad60cb77892ee533f59fe7bb Last updated: 16 Oct 2019 at 13:33 UTCOfficial release from tag: 8.x-1.2Core compatibility: 8.xRelease type: Security updateBug fixesPackaged Git sha1: 987d852576deac0652de425898900174bed67f6e
greggles

img_annotator 7.x-1.2

3 months ago
Release notes

Security release

Original unsupport security advisory

Contributors (8)

Grimreaper, Pere Orga, David_Rothstein, abhaysaraf, greggles, rooby, mlhess, larowlan

Changelog

Issues: 1 issues resolved.

Changes since 7.x-1.1:

Task Download Size md5 hash img_annotator-7.x-1.2.tar.gz 14.34 KB 89ee0d956f4c788485a4727cd6194072 img_annotator-7.x-1.2.zip 16.76 KB ca899a35a7b85f4db4ea41063b5c66a4 Last updated: 16 Oct 2019 at 13:33 UTCOfficial release from tag: 7.x-1.2Core compatibility: 7.xRelease type: Security updateBug fixesPackaged Git sha1: 821e0076daef0fc28bd5c7e76b5dc749061f3feb
greggles

maxlength 7.x-3.3

3 months 1 week ago
Release notes

See Maxlength - Moderately critical - Cross Site Scripting - SA-CONTRIB-2019-073.

Download Size md5 hash maxlength-7.x-3.3.tar.gz 15.58 KB 7d765c2646d9a02fbcd9e2d76b9aee32 maxlength-7.x-3.3.zip 17.69 KB 9ee39ae265dfaf62de96ef3eaed2da78 Last updated: 9 Oct 2019 at 15:08 UTCOfficial release from tag: 7.x-3.3Core compatibility: 7.xRelease type: Security updatePackaged Git sha1: c9db941b6e831dc9326c2919875d57ce98620159
greggles

simple_amp 8.x-1.16

3 months 2 weeks ago
Release notes

This release fixes access issue of AMP version of unpublished or otherwise access controlled nodes.

Simple AMP (Accelerated Mobile Pages) - Moderately critical - Access bypass - SA-CONTRIB-2019-071

Download Size md5 hash simple_amp-8.x-1.16.tar.gz 27.21 KB d363c90198781ce17d40b59b13787478 simple_amp-8.x-1.16.zip 50.78 KB 96de2d2c94fb54dd7f1ec46d677bc1e4 Last updated: 2 Oct 2019 at 16:08 UTCOfficial release from tag: 8.x-1.16Core compatibility: 8.xRelease type: Security updateShort description: This release fixes access issue of AMP version of unpublished nodes.Packaged Git sha1: 0973d33a4e2d66ab3ba8b10da3bf28c56c366734
minnur
Checked
2 hours 21 minutes ago
Subscribe to Drupal: Security update feed