Drupal5: SA-2007-031, SA-2008-005,SA-2008-006: SQL injection and XSS
Bug #181984 reported by
Emanuele Gentili
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
drupal (Ubuntu) |
Won't Fix
|
Undecided
|
Unassigned | ||
Feisty |
Fix Released
|
Undecided
|
Unassigned | ||
Gutsy |
Won't Fix
|
Undecided
|
Unassigned | ||
Hardy |
Won't Fix
|
Undecided
|
Unassigned | ||
drupal5 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Feisty |
Fix Released
|
Undecided
|
Unassigned | ||
Gutsy |
Fix Released
|
Undecided
|
Unassigned | ||
Hardy |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: drupal5
drupal5 (5.2-2ubuntu2.2) gutsy-security; urgency=low
* SECURITY UPDATE:
Fix several security issues found in drupal 5.4.
* Patches are taken from the drupal security announcememnts:
- SA-2007-31: SQJ injection possible when certain contributed modules are enabled
* References:
- SA-2007-31: http://
Changed in drupal5: | |
status: | Confirmed → Fix Released |
Changed in drupal: | |
status: | New → Won't Fix |
status: | New → Won't Fix |
Changed in drupal5: | |
status: | New → Won't Fix |
Changed in drupal: | |
status: | New → Won't Fix |
Changed in drupal5: | |
status: | New → Confirmed |
Changed in drupal5: | |
status: | Confirmed → Fix Committed |
Changed in drupal5: | |
status: | Fix Committed → Fix Released |
status: | Fix Committed → Fix Released |
Changed in drupal: | |
status: | New → Fix Released |
To post a comment you must log in.
Sorry for first patch, i recreate it with dpatch system now.
Hardy not affected, affected only Guitsy and Feisty (patch attached)