Drupal contrib security advisories
SAML SP 2.0 Single Sign On (SSO) - SAML Service Provider - Critical - Access bypass - SA-CONTRIB-2020-038
This module enables your users residing at a SAML 2.0 compliant Identity Provider to login to your Drupal website.
The module has two Authentication Bypass vulnerabilities.
Solution:Install the latest version:
- If you use the miniorange_saml module for Drupal 8.x, upgrade to miniorange_saml 8.x-2.14
- If you use the miniorange_saml module for Drupal 7.x, upgrade to miniorange_saml 7.x-2.54
- Heine of the Drupal Security Team
- Michael Mazzolini
- Heine of the Drupal Security Team
- Chris McCafferty of the Drupal Security Team
Ink Filepicker - Critical - Unsupported - SA-CONTRIB-2020-037
The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer.
It looks like the 3rd party service that this module integrates with may have been retired.
If you would like to maintain this project nevertheless, please read: https://www.drupal.org/node/251466#procedure---own-project---unsupported
Solution:If you use this project, you should uninstall it. To take over maintainership, please read https://www.drupal.org/node/251466#procedure---own-project---unsupported in full.
Media: oEmbed - Critical - Remote Code Execution - SA-CONTRIB-2020-036
Media oEmbed does not properly sanitize certain filenames as described in SA-CORE-2020-012.
Solution:Install the latest version:
- Upgrade to Media oEmbed 7.x-2.8
- Alex Pott of the Drupal Security Team
- Samuel Mortenson of the Drupal Security Team
- Alex Pott of the Drupal Security Team
- Drew Webber of the Drupal Security Team
- Samuel Mortenson of the Drupal Security Team
- Alex Pott of the Drupal Security Team
- Drew Webber of the Drupal Security Team
- xjm of the Drupal Security Team
Examples for Developers - Critical - Remote Code Execution - SA-CONTRIB-2020-035
The File Example submodule within the Examples project does not properly sanitize certain filenames as described in SA-CORE-2020-012, along with other related vulnerabilities.
Therefore, File Example so is being removed from Examples until a version demonstrating file security best practices can added back in the future.
Solution:Any sites that have File Example submodule installed should uninstall it immediately
Then, install the latest version of Examples:
- If you use Examples 3 (Drupal 9-compatible), upgrade to Examples 3.0.2
- If you use the Examples module's 8.x-1.x branch, upgrade to Examples 8.x-1.1
- Alex Pott of the Drupal Security Team
- Valery Lourie
- Samuel Mortenson of the Drupal Security Team
- Jess (xjm) of the Drupal Security Team
- Alex Pott of the Drupal Security Team
- Michael Hess of the Drupal Security Team
- Jess (xjm) of the Drupal Security Team
- Drew Webber of the Drupal Security Team
- Alex Pott of the Drupal Security Team
Drupal OAuth Server ( OAuth Provider) - Single Sign On ( SSO ) - Moderately critical - SQL Injection - SA-CONTRIB-2020-034
This module enables you login into any OAuth 2.0 compliant application using Drupal credentials.
The 8.x branch of the module is vulnerable to SQL injection.
Solution:Install the latest version:
- If you use the Drupal OAuth Server module for Drupal 8.x, upgrade to 8.x-1.1
- Gaurav Sood
- Greg Knaddison of the Drupal Security Team
- Samuel Mortenson of the Drupal Security Team
- Michael Hess of the Drupal Security Team