Hi, https://www.drupal.org/project/drupal/releases/8.8.8 says the following: [...] Release notes Maintenance and security release of the Drupal 8 series. This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement: Drupal core - Critical - Cross-Site Request Forgery - SA-CORE-2020-004 Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2020-005 Drupal core - Less critical - Access bypass - SA-CORE-2020-006 https://www.drupal.org/sa-core-2020-004 https://www.drupal.org/sa-core-2020-005 https://www.drupal.org/sa-core-2020-006 No other fixes are included. [...]
now up to 8.8.10 https://www.drupal.org/project/drupal/releases/8.8.10 [release notes] Release notes Maintenance and security release of the Drupal 8 series. This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement: Drupal core - Moderately critical - Cross-site scripting - SA-CORE-2020-007 Drupal core - Moderately critical - Access bypass - SA-CORE-2020-008 Drupal core - Critical - Cross-site scripting - SA-CORE-2020-009 Drupal core - Moderately critical - Cross-site scripting - SA-CORE-2020-010 Drupal core - Moderately critical - Information disclosure - SA-CORE-2020-011 https://www.drupal.org/sa-core-2020-007 https://www.drupal.org/sa-core-2020-008 https://www.drupal.org/sa-core-2020-009 https://www.drupal.org/sa-core-2020-010 https://www.drupal.org/sa-core-2020-011
- drupal8 was updated to 8.8.11. Thanks for your PR