Details
-
Improvement
-
Resolution: Unresolved
-
Neutral
-
None
-
6.2.39
-
None
Description
Issue

Context
- With the regular RTE (on pages app, contacts app, etc.) lately we have a popup that warns that current CKEditor version is not secure (Version 4.22.1).
- As the message is quite tenacious/persistent would be great if Magnolia would upgrade to a LTS version soon.
- We checked all upcoming releases (up until [6.2.42|https://docs.magnolia-cms.com/product-docs/6.2/Releases/Release-notes-for-Magnolia-CMS-6.2.42.html]) but we could not find notes that mention the recommended upgrade to CKEditor LTS version 4.24.0-lts.
References
- https://ckeditor.com/cke4/release/CKEditor-4.24.0-LTS
- https://security.snyk.io/package/npm/ckeditor4
- https://www.cvedetails.com/vulnerability-list/vendor_id-12058/Ckeditor.html

Checklists
Acceptance criteria