Debian Security Advisory 4412-1

Debian Security Advisory 4412-1: Posted Mar 21, 2019; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4412-1 - It was discovered that missing input sanitizing in the file module of Drupal, a fully-featured content management framework, could result in cross-site scripting.; tags | advisory, xss; systems | linux, debian; SHA-256 | 32855a70eee75487169ab0630412997adaa9acd953e4c59aebbd104f0f3c08a1; Download | Favorite | View

Debian Security Advisory 4412-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4412-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
March 20, 2019                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : drupal7
CVE ID         : not yet available

It was discovered that missing input sanitising in the file module of
Drupal, a fully-featured content management framework, could result in
cross-site scripting.

For additional information, please refer to the upstream advisory
at https://www.drupal.org/sa-core-2019-004.

For the stable distribution (stretch), this problem has been fixed in
version 7.52-2+deb9u7.

We recommend that you upgrade your drupal7 packages.

For the detailed security status of drupal7 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/drupal7

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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TeKV
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

Debian Security Advisory 4412-1

Debian Security Advisory 4412-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 4412-1

Share This

Debian Security Advisory 4412-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems