Sicherheit: Mangelnde Rechteprüfung in drupal6-ctools
Aktuelle Meldungen Distributionen
Name: Mangelnde Rechteprüfung in drupal6-ctools
ID: FEDORA-2014-2531
Distribution: Fedora
Plattformen: Fedora 20
Datum: So, 23. Februar 2014, 10:08
Referenzen: Keine Angabe
Applikationen: Drupal


Name        : drupal6-ctools
Product : Fedora 20
Version : 1.11
Release : 1.fc20
URL : http://drupal.org/project/ctools
Summary : This suite is primarily a set of APIs and tools
Description :
This suite is primarily a set of APIs and tools to improve the developer
experience. It also contains a module called the Page Manager whose job
is to manage pages. In particular it manages panel pages, but as it grows
it will be able to manage far more than just Panels.

For the moment, it includes the following tools:
* Plugins -- tools to make it easy for modules to let other modules implement
plugins from .inc files.
* Exportables -- tools to make it easier for modules to have objects that live
in database or live in code, such as 'default views'.
* AJAX responder -- tools to make it easier for the server to handle AJAX
requests and tell the client what to do with them.
* Form tools -- tools to make it easier for forms to deal with AJAX.
* Object caching -- tool to make it easier to edit an object across multiple
page requests and cache the editing work.
* Contexts -- the notion of wrapping objects in a unified wrapper and providing
an API to create and accept these contexts as input.
* Modal dialog -- tool to make it simple to put a form in a modal dialog.
* Dependent -- a simple form widget to make form items appear and disappear
based upon the selections in another item.
* Content -- pluggable content types used as panes in Panels and other modules
like Dashboard.
* Form wizard -- an API to make multi-step forms much easier.
* CSS tools -- tools to cache and sanitize CSS easily to make user-input CSS

This package provides the following Drupal modules:
* ctools
* ctools_access_ruleset
* ctools_ajax_sample
* ctools_custom_content
* ctools_plugin_example
* bulk_export
* page_manager
* stylizer
* views_content

Update Information:

Updated to 1.11
* Release notes: https://drupal.org/node/2194547
* SA-CONTRIB-2014-013

* Thu Feb 13 2014 Shawn Iwinski <shawn.iwinski@gmail.com> - 1.11-1
- Updated to 1.11 (BZ #1064730; release notes https://drupal.org/node/2194547)
- Security BZ #1064864, #1064865, #1064867
- SA-CONTRIB-2014-013
- Spec cleanup

[ 1 ] Bug #1064864 - drupal6-ctools: access bypass issues

This update can be installed with the "yum" update program. Use
su -c 'yum update drupal6-ctools' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list
Pro-Linux @Facebook
Neue Nachrichten