Package: drupal7 Version: 7.14-1.3 Hi,
Steven, thanks for your observing eyes ;-) I have uploaded Drupal7 7.14-1.3 fixing this specific vulnerability, but yes, I agree with your suggestion - I am not the Drupal maintainer (although I have done several security uploads lately), but it clearly makes sense to make Drupal use the systemwide Javascript libraries. This is a task, however, that should be tackled post-release. I am filing this as a new bug report to keep the issue present. Thanks! -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]

