Session Cache API - Critical - Multiple vulnerabilities

* Advisory ID: DRUPAL-SA-CONTRIB-2017-065
* Project: Session Cache API (third-party module)
* Version: 7.x, 8.x
* Date: 2017-August-09
* Security risk: 18/25 ( Critical)
* Vulnerability: Multiple vulnerabilities

DESCRIPTION

This module does not safely deal with serialization.

VERSIONS AFFECTED

* Session Cache API 7.x-1.4

Drupal core is not affected. If you do not use the contributed Session Cache API module, there is nothing you need to do.

SOLUTION

Install the latest version:

* Upgrade to session_cache 7.x-1.5

Also see the Session Cache API project page: https://www.drupal.org/project/session_cache

Add new comment