Re: Security release for djangocms-text-ckeditor

2020-08-05 Thread Mario Colombo 
Thank you Jacob! Much appreciated!

On Wed, 5 Aug 2020 at 14:51, Jacob Rief  wrote:

> Hi folks,
>
> I have released a security update for
> https://github.com/divio/djangocms-text-ckeditor as version 3.10.0
> It fixes a XSS vulnerability found in earlier versions of CKEditor. This
> release upgrades CKEditor to version 4.14.0.
>
> – Jacob
>
> --
> Message URL:
> https://groups.google.com/d/msg/django-cms-developers/topic-id/message-id
> Unsubscribe: send a message to
> django-cms-developers+unsubscr...@googlegroups.com
> ---
> You received this message because you are subscribed to the Google Groups
> "django CMS developers" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to django-cms-developers+unsubscr...@googlegroups.com.
> To view this discussion on the web, visit
> https://groups.google.com/d/msgid/django-cms-developers/0a599f18-22fa-4005-9bb0-1990bd962bc4n%40googlegroups.com
> 
> .
>
-- 
Mario Colombo
Partner

what. creates digital success.

what.digital GmbH 
Kreuzstrasse 24
8008 Zürich

+41 78 941 73 34 <+41789417334>
mario@what.digital
Schedule a meeting with me  |
Linkedin 

-- 
Message URL: 
https://groups.google.com/d/msg/django-cms-developers/topic-id/message-id
Unsubscribe: send a message to 
django-cms-developers+unsubscr...@googlegroups.com
--- 
You received this message because you are subscribed to the Google Groups 
"django CMS developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to django-cms-developers+unsubscr...@googlegroups.com.
To view this discussion on the web, visit 
https://groups.google.com/d/msgid/django-cms-developers/CAJqV9tf4a%2BSmR%2B6%3DCN1LSqKrSsn1c%3Du%3DZxbCyr77Gu3F9iXviw%40mail.gmail.com.

Re: Security release for djangocms-text-ckeditor

2020-08-05 Thread Jacob Rief 
Hi folks,

I have released a security update for 
https://github.com/divio/djangocms-text-ckeditor as version 3.10.0
It fixes a XSS vulnerability found in earlier versions of CKEditor. This 
release upgrades CKEditor to version 4.14.0.

– Jacob

-- 
Message URL: 
https://groups.google.com/d/msg/django-cms-developers/topic-id/message-id
Unsubscribe: send a message to 
django-cms-developers+unsubscr...@googlegroups.com
--- 
You received this message because you are subscribed to the Google Groups 
"django CMS developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to django-cms-developers+unsubscr...@googlegroups.com.
To view this discussion on the web, visit 
https://groups.google.com/d/msgid/django-cms-developers/0a599f18-22fa-4005-9bb0-1990bd962bc4n%40googlegroups.com.

Re: Security release for djangocms-text-ckeditor

2020-08-04 Thread Iacopo Spalletti 
On 04/08/20 11:51, Jacob Rief wrote:
> I'd like to release a new version of djangocms-text-ckeditor
> . Possible versions
> would either be 3.9.2 or 3.10.0.
> This is because we really should upgrade to a newer version of CKEditor,
> since the current one (4.7.3) has a documented XSS vulnerability.
> 
> If there are no objections, I will use version number 3.10.0. In my
> opinion a minor version number increase is appropriate here, since CKEditor
> version 4.14.1 also adds a lot of new features.


:+1: from me for the update and releasing it at 3.10.0

Iacopo



> 
> – Jacob
> 
> -- 
> Message URL:
> https://groups.google.com/d/msg/django-cms-developers/topic-id/message-id
> Unsubscribe: send a message to
> django-cms-developers+unsubscr...@googlegroups.com
> ---
> You received this message because you are subscribed to the Google
> Groups "django CMS developers" group.
> To unsubscribe from this group and stop receiving emails from it, send
> an email to django-cms-developers+unsubscr...@googlegroups.com
> .
> To view this discussion on the web, visit
> https://groups.google.com/d/msgid/django-cms-developers/5eaee04d-1ba6-4d7d-b2ea-83e49de0a3dfo%40googlegroups.com
> .


-- 
Iacopo Spalletti

Nephila - Firenze
Phone: +39 055 5357189
Support: +39 055 3985730
https://nephila.digital

-- 
Message URL: 
https://groups.google.com/d/msg/django-cms-developers/topic-id/message-id
Unsubscribe: send a message to 
django-cms-developers+unsubscr...@googlegroups.com
--- 
You received this message because you are subscribed to the Google Groups 
"django CMS developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to django-cms-developers+unsubscr...@googlegroups.com.
To view this discussion on the web, visit 
https://groups.google.com/d/msgid/django-cms-developers/1ec7e9b1-ab83-386b-0d39-bbe911ed2373%40nephila.digital.


signature.asc
Description: OpenPGP digital signature

Security release for djangocms-text-ckeditor

2020-08-04 Thread Jacob Rief 
I'd like to release a new version of djangocms-text-ckeditor 
. Possible versions would 
either be 3.9.2 or 3.10.0.
This is because we really should upgrade to a newer version of CKEditor, 
since the current one (4.7.3) has a documented XSS vulnerability.

If there are no objections, I will use version number 3.10.0. In my opinion 
a minor version number increase is appropriate here, since CKEditor
version 4.14.1 also adds a lot of new features.

– Jacob

-- 
Message URL: 
https://groups.google.com/d/msg/django-cms-developers/topic-id/message-id
Unsubscribe: send a message to 
django-cms-developers+unsubscr...@googlegroups.com
--- 
You received this message because you are subscribed to the Google Groups 
"django CMS developers" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to django-cms-developers+unsubscr...@googlegroups.com.
To view this discussion on the web, visit 
https://groups.google.com/d/msgid/django-cms-developers/5eaee04d-1ba6-4d7d-b2ea-83e49de0a3dfo%40googlegroups.com.