Heine

  • Home
  • Drupal
  • About
Home

Drupal 5.2 and 4.7.7 released

Heine —Thu, 2007/07/26 - 23:18

It was a difficult delivery, but Drupal 5.2 and 4.7.7 have finally been released. As you can read in the release announcement, several vulnerablities were fixed.

There are two advisories:

  • SA-2007-017: Cross site request forgeries - concerns Drupal 5.x prior to 5.2.
  • SA-2007-018: Cross site scripting - concerns both Drupal 4.7.x prior to 4.7.7 and Drupal 5.x prior to 5.2.

An immediate upgrade to either 4.7.7 or 5.2 is recommended.

Signatures of the archives are attached below.

AttachmentSize
Binary Data drupal-4.7.7.tar.gz.sig194 bytes
Binary Data drupal-5.2.tar.gz.sig194 bytes
  • Drupal
  • Security

Recent posts

  • Teampassword manager's password generator is biased
  • Other vectors for SA-CORE-2014-005?
  • Lazy loading: hook_hook_info is for hook owners only.
  • "Always offline" problem in EA's Origin due to antivirus
  • From bug to exploit - Bakery SSO
more

Security reviews

I provide security reviews of custom code, contributed modules, themes and entire sites via LimoenGroen.

Contact us for a quote.

Follow @ustima

Copyright © 2021 by Heine Deelstra. All rights reserved.

  • Home
  • Drupal
  • About