HomeContent Toolkit Logo

Content Toolkit

Home

>

Tools

>

Drupal

>

Releases

>

10.0.7

Drupal Release: 10.0.7

Tag Name: 10.0.7

Release Date: 3/24/2023

View Release
Drupal LogoDrupal

Highly flexible, open-source content management system known for complex, scalable web applications. Preferred by government, educational, and large enterprise websites requiring advanced customization and security features. Robust module ecosystem.

Open SourceDeveloper-FriendlyEnterprise

TL;DR

Drupal 10.0.7 is a minor security release that reverts the CKEditor 5 update to version 36.0.1 that was included in a previous release. This reversion addresses security concerns that were discovered after the update was initially deployed. The release contains minimal changes focused solely on this reversion.

Highlight of the Release

    • Reverts CKEditor 5 update to version 36.0.1
    • Addresses security concerns related to the CKEditor update
    • Maintains stability for Drupal 10.0.x sites

Migration Guide

No migration steps are required for this release. The update simply reverts CKEditor 5 to its previous version. Sites that have already updated to Drupal 10.0.6 should update to 10.0.7 to ensure they are using the secure version of CKEditor.

Upgrade Recommendations

It is strongly recommended that all sites running Drupal 10.0.x update to version 10.0.7 as soon as possible to address the security concerns related to CKEditor 5. This is a minor update that should not cause any compatibility issues with existing sites.

Bug Fixes

This release fixes a security issue by reverting the CKEditor 5 update to version 36.0.1 (Issue #3344083). The reversion was necessary to address security concerns that were discovered after the update was initially deployed.

New Features

No new features were added in this release. This is strictly a security maintenance release that reverts a previous change.

Security Updates

This release addresses security concerns related to CKEditor 5 version 36.0.1 by reverting to a previous version. The exact nature of the security issue is not detailed in the commit messages, but the reversion was deemed necessary to maintain the security integrity of Drupal sites.

Performance Improvements

No specific performance improvements were included in this release. The focus was on addressing security concerns by reverting the CKEditor 5 update.

Impact Summary

Drupal 10.0.7 is a security-focused release that reverts a previous update to CKEditor 5. The impact is minimal for most users, as it simply returns CKEditor to its state prior to version 10.0.6. However, this update is important for maintaining the security of Drupal sites. Site administrators should apply this update promptly to ensure their sites remain secure. Content editors will continue using the previous version of CKEditor 5 rather than version 36.0.1, which may mean they won't have access to any features or fixes that were part of that update.

Statistics:

File Changed84
Line Additions66
Line Deletions66
Line Changes132
Total Commits3

User Affected:

  • Need to update their Drupal 10.0.x sites to this version to maintain security
  • Should be aware that CKEditor 5 has been reverted to a previous version

Contributors: