Date: Thu, 18 Oct 2007 13:44:04 -0700 From: Linh Pham <question@closedsrc.org> To: freebsd-security@freebsd.org Cc: nick@foobar.org Subject: www/drupal4 and www/drupal5: Multiple security vulnerabilities Message-ID: <20071018204404.GA95280@dalek.internal.closedsrc.org>
next in thread | raw e-mail | index | archive | help
--MGYHOYXEY6WxJCY8 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable The Drupal project announced several security vulnerabilities for the 4.7.x and 5.x releases of the Drupal package. These effect two current ports: www/drupal4 and www/drupal5. The following are the security advisories that were posted: 4.7.x: * DRUPAL-SA-2007-024: http://drupal.org/node/184315 * DRUPAL-SA-2007-026: http://drupal.org/node/184320 * DRUPAL-SA-2007-030: http://drupal.org/node/184354 5.x: * DRUPAL-SA-2007-024: http://drupal.org/node/184315 * DRUPAL-SA-2007-025: http://drupal.org/node/184316 * DRUPAL-SA-2007-026: http://drupal.org/node/184320 * DRUPAL-SA-2007-029: http://drupal.org/node/184348 * DRUPAL-SA-2007-030: http://drupal.org/node/184354 While patches are available for 4.7.7 and 5.2, they recommend an update to the latest version of the respective branches (4.7.8 and 5.3). --=20 Linh Pham question@closedsrc.org http://closedsrc.org/ --MGYHOYXEY6WxJCY8 Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) iD8DBQFHF8WUwhofDeWkDMIRAp1CAJ4nh5WAliaDhXVqaZEKfKz4sBG9cACeJgcp ZOjLIt2GXDNThUGIHIpcPso= =A9oh -----END PGP SIGNATURE----- --MGYHOYXEY6WxJCY8--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20071018204404.GA95280>