From owner-freebsd-ports@FreeBSD.ORG Thu Mar 19 00:40:59 2015 Return-Path: Delivered-To: ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id D3A3F6F3 for ; Thu, 19 Mar 2015 00:40:59 +0000 (UTC) Received: from mout.gmx.net (mout.gmx.net [212.227.15.19]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mout.gmx.net", Issuer "TeleSec ServerPass DE-1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 5514E6CE for ; Thu, 19 Mar 2015 00:40:59 +0000 (UTC) Received: from [192.168.0.113] ([112.198.64.48]) by mail.gmx.com (mrgmx001) with ESMTPSA (Nemesis) id 0MIe0O-1YWBax1V2O-002JjA for ; Thu, 19 Mar 2015 01:40:56 +0100 Message-ID: <550A1AF4.9000201@gmx.net> Date: Thu, 19 Mar 2015 08:40:20 +0800 From: Simon Wright User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:31.0) Gecko/20100101 Thunderbird/31.5.0 MIME-Version: 1.0 To: ports@freebsd.org Subject: Security patch for Drupal 6/7 needed Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K0:sXsIxF0zDACKDiHHFT1oMvHEV5wjP4jPuk4dOC+J1hzGP1TiyFO RnX36v8Pyn2Z4M1VF/Q49we7qlzzrOdXoZkJGXUK15H3x9dezqEqMVB1nCCNxZpMQKWVlxJ 9u5EvJq2ePcmHVQwzpK787zkF+KtTUlMBBo5xljeJ2xyGDDxwVNoRD5JnJC656XVURRhOMy JJ3kQE/hMYlD/MDV5jt7A== X-UI-Out-Filterresults: notjunk:1; X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Mar 2015 00:40:59 -0000 Hi all I am the maintainer of Drupal 6 & 7. Upstrem have just released a moderately critical security update but I am travelling with no access to my systems. If someone can quickly write and test a patch I will approve it. There are a couple of points listed on the release notes but nothing major. Thanks Simon.