Read Time:19 Second

Drupal 9.3 implemented a generic entity access API for entity revisions. However, this API was not completely integrated with existing permissions, resulting in some possible access bypass for users who have access to use revisions of content generally, but who do not have access to individual items of node and media content. This vulnerability only affects sites using Drupal’s revision system.

Read More

More Stories

qgis-3.42.1-2.fc42

FEDORA-2025-f12c63c177 Packages in this update: qgis-3.42.1-2.fc42 Update description: Fix CVE-2024-55565. Update to 3.42.1. Update to qgis-3.42.0 Read More

qgis-3.40.5-2.fc41

FEDORA-2025-ccb6313749 Packages in this update: qgis-3.40.5-2.fc41 Update description: Fix CVE-2024-55565. Update to 3.40.5. Update to 3.40.4. Read More