- Issue created by @ronaldtebrake
- Status changed to Needs review
11 months ago 3:09pm 1 February 2024 - 🇸🇮Slovenia nkoporec Slovenia
- Status changed to Fixed
11 months ago 9:53am 13 February 2024 - 🇳🇱Netherlands pefferen
thanks for the fix, is there any timeline for the 13.0.0 version
- 🇳🇱Netherlands pefferen
reposting gist of response from @ronaldtebrake on Slack. added Version 13 meta issue #3254517
and solved the composer security issue by removing the dependency via the following addition to our projects composer.json:
"replace": { "drupal/swiftmailer": "*" },
Automatically closed - issue fixed for 2 weeks with no activity.
- 🇭🇺Hungary szato
Because of
https://www.drupal.org/sa-contrib-2024-006 →Project: Swift Mailer
Date: 2024-January-24
Security risk: Moderately critical 12∕25 AC:Basic/A:None/CI:Some/II:None/E:Theoretical/TD:Default
Vulnerability: Access bypass
Affected versions: *All versions are effected, so
"replace": { "drupal/swiftmailer": "*" },
will not solve the composer security issue :(
- 🇬🇧United Kingdom jpontet
@ronaldtebrake just wondered why it is necessary to wait for a v13 to get swiftmailer removed? And do you have a timeline for the v13 release?