Drupal 6.13 released to fix moderately critical security vulnerability

Bug #395004 reported by Scott Testerman on 2009-07-03
262
This bug affects 1 person
Affects Status Importance Assigned to Milestone
drupal6 (Ubuntu)
Medium
Scott Testerman
Jaunty
Medium
Scott Testerman
Karmic
Medium
Scott Testerman

Bug Description

Binary package hint: drupal6

Drupal 6.13 has been released to fix moderately critical security vulnerabilities, as well as other, smaller issues. No new functionality has been included. Full details about the security issues addressed by this bugfix are available at http://drupal.org/node/507572 . The release announcement can be found at http://drupal.org/drupal-6.13 .

Drupal 6.13 is not yet available upstream for merging.

CVE References

visibility: private → public
Changed in drupal6 (Ubuntu):
importance: Undecided → Medium
status: New → Confirmed

I've created a PPA with the latest version of Drupal available for the currently-supported Ubuntu releases.

https://launchpad.net/~scott-testerman/+archive/ppa

Thank you for taking that on. This is really appreciated.

Mike B.

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

Changed in drupal6 (Ubuntu):
status: Confirmed → In Progress
assignee: nobody → Scott Testerman (scott-testerman)

Diff attached for Jaunty.

Upstream (not Debian) source:
ftp://ftp.osuosl.org/pub/drupal/files/projects/drupal-6.13.tar.gz

Diff attached for Karmic.

Upstream (not Debian) source:
ftp://ftp.osuosl.org/pub/drupal/files/projects/drupal-6.13.tar.gz

Changed in drupal6 (Ubuntu Jaunty):
status: New → In Progress
importance: Undecided → Medium
assignee: nobody → Scott Testerman (scott-testerman)

This bug is superseded by Bug #431078

Kees Cook (kees) on 2009-09-20
Changed in drupal6 (Ubuntu Jaunty):
status: In Progress → Invalid
Changed in drupal6 (Ubuntu Karmic):
status: In Progress → Invalid
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers