Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.Project:
Date:
2024-February-21
Vulnerability:
Access bypass
Affected versions:
<2.0.2
Description:
This module provides an alternative mean of rebuilding the Content Access table.
The module doesn't sufficiently reset the state of content access when the module is uninstalled.
Solution:
Install the latest version:
- If you use the node_access_rebuild_progressive module for Drupal 9.4+, upgrade to node_access_rebuild_progressive 2.0.2
Reported By:
Fixed By:
Coordinated By:
- Greg Knaddison of the Drupal Security Team
- Damien McKenna of the Drupal Security Team
