This release updates the pinned versions of Composer to 2.9.7 for several Composer security fixes that were released today. Drupal does not expose these vulnerabilities, but the update is included as a hardening for other applications that may extend the library directly.
This release updates the pinned versions of Composer to 2.9.7 for several Composer security fixes that were released today. Drupal does not expose these vulnerabilities, but the update is included as a hardening for other applications that may extend the library directly.
This release updates the pinned versions of Composer to 2.9.7 for several Composer security fixes that were released today. Drupal does not expose these vulnerabilities, but the update is included as a hardening for other applications that may extend the library directly.
This is a security release of the Drupal 11 series.
Note: This release introduces a regression for configuration import that could result in data loss in certain scenarios. Sites should update directly to Drupal 11.3.8 instead of this release.
This release fixes security vulnerabilities. Sites are urged to update immediately after reading the notes below and the security announcements:
This release updates the pinned versions of Composer to 2.9.7 for several Composer security fixes that were released today. Drupal does not expose these vulnerabilities, but the update is included as a hardening for other applications that may extend the library directly.
In addition to the news page and sub-tabs, all security announcements are posted to an email list. To subscribe to email: log in, go to your user profile page and subscribe to the security newsletter on the Edit » My newsletters tab.
