Diff attached for Jaunty ** Description changed:
Binary package hint: drupal6 Drupal 6.14 has been released to fix multiple critical security vulnerabilities, as well as other, smaller issues. No new functionality has been included. Full details about the security issues addressed by this bugfix are available at http://drupal.org/node/579482 . The release announcement can be found at http://drupal.org/drupal-6.14 . Drupal 6.14 is not yet available upstream for merging. Vulnerabilities fixed are: * OpenID association cross site request forgery vulnerability; * OpenID impersonation vulnerability; * File upload creates files that are executable by Apache vulnerability. + + New upstream (non-Debian) version: + ftp://ftp.osuosl.org/pub/drupal/files/projects/drupal-6.14.tar.gz ** Attachment added: "Drupal6-6.14 for Jaunty" http://launchpadlibrarian.net/32009799/drupal6_6.14-0ubuntu1.diff.gz -- Drupal 6.14 released to fix multiple critical security vulnerabilities https://bugs.launchpad.net/bugs/431078 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
