www/drupal4 and www/drupal5: Multiple security vulnerabilities
--MGYHOYXEY6WxJCY8
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
The Drupal project announced several security vulnerabilities for the
4.7.x and 5.x releases of the Drupal package. These effect two current
ports: www/drupal4 and www/drupal5.
The following are the security advisories that were posted:
4.7.x:
* DRUPAL-SA-2007-024: http://drupal.org/node/184315
* DRUPAL-SA-2007-026: http://drupal.org/node/184320
* DRUPAL-SA-2007-030: http://drupal.org/node/184354
5.x:
* DRUPAL-SA-2007-024: http://drupal.org/node/184315
* DRUPAL-SA-2007-025: http://drupal.org/node/184316
* DRUPAL-SA-2007-026: http://drupal.org/node/184320
* DRUPAL-SA-2007-029: http://drupal.org/node/184348
* DRUPAL-SA-2007-030: http://drupal.org/node/184354
While patches are available for 4.7.7 and 5.2, they recommend an update
to the latest version of the respective branches (4.7.8 and 5.3).
--=20
Linh Pham
question@closedsrc.org
http://closedsrc.org/
--MGYHOYXEY6WxJCY8
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (FreeBSD)
iD8DBQFHF8WUwhofDeWkDMIRAp1CAJ4nh5WAliaDhXVqaZEKfKz4sBG9cACeJgcp
ZOjLIt2GXDNThUGIHIpcPso=
=A9oh
-----END PGP SIGNATURE-----
--MGYHOYXEY6WxJCY8--