Fedora 23: FEDORA-2015-14329 Moderate: Drupal6-CTools Critical Issues

This suite is primarily a set of APIs and tools to improve the developer

experience. It also contains a module called the Page Manager whose job

is to manage pages. In particular it manages panel pages, but as it grows

it will be able to manage far more than just Panels.

For the moment, it includes the following tools:

* Plugins -- tools to make it easy for modules to let other modules implement

plugins from .inc files.

* Exportables -- tools to make it easier for modules to have objects that live

in database or live in code, such as 'default views'.

* AJAX responder -- tools to make it easier for the server to handle AJAX

requests and tell the client what to do with them.

* Form tools -- tools to make it easier for forms to deal with AJAX.

* Object caching -- tool to make it easier to edit an object across multiple

page requests and cache the editing work.

* Contexts -- the notion of wrapping objects in a unified wrapper and providing

an API to create and accept these contexts as input.

* Modal dialog -- tool to make it simple to put a form in a modal dialog.

* Dependent -- a simple form widget to make form items appear and disappear

based upon the selections in another item.

* Content -- pluggable content types used as panes in Panels and other modules

like Dashboard.

* Form wizard -- an API to make multi-step forms much easier.

* CSS tools -- tools to cache and sanitize CSS easily to make user-input CSS

safe.

This package provides the following Drupal modules:

* bulk_export

* ctools

* ctools_access_ruleset

* ctools_ajax_sample

* ctools_custom_content

* ctools_plugin_example

* page_manager

* stylizer

* views_content

**See [Ctools - Critical - Multiple Vulnerabilities - SA- CONTRIB-2015-141.]() **This is an incremental security and bugfix release for ctools.** Looking to fix future D6 CTools issues? Find japerry or merlinofchaos in #drupal-scotch, #drupal- contribute, or #drupal-panels -- and become a maintainer for D6 CTools. Changes since 6.x-1.13: * Harden AJAX link handling * Content type plugins do not properly inherit "edit" permission * Various lint fixes * Fix typo * Issue \#2512850 by DamienMcKenna, mw4ll4c3: PHP 5.4+ compatibility * Issue \#2010124 by davidwhthomas: ctools_access_get_loggedin_context doesn't fully load current user in context