http://drupal.org/files/sa-2006-024/advisory.txt: Project: Drupal core Date: 2006-Oct-18 Security risk: Moderately critical Exploitable from: Remote Vulnerability: Cross site scripting http://drupal.org/files/sa-2006-025/advisory.txt : Project: Drupal core Date: 2006-Oct-18 Security risk: Highly critical Exploitable from: Remote Vulnerability: Cross site request forgeries http://drupal.org/files/sa-2006-026/advisory.txt : Project: Drupal core Date: 2006-Oct-18 Security risk: Less critical Exploitable from: Remote Vulnerability: HTML attribute injection
web-apps, pls bump
Created attachment 100799 [details] ebuild drupal-4.6.10
Created attachment 100800 [details] ebuild drupal-4.7.4
/me watches his nick magically appear in status whitboard.... CC'ing dev st_lim, pls provide an updated ebuild
ok, I only just noticed that drupal is p.masked anyways (bug 98524) given this little attention to it, one might consider removing it though!? <quote> # Christel Dahlskjaer <christel@gentoo.org> (09 Sep 2006) # Serious QA issues; see bug #98524 www-apps/drupal </quote>
Yes, one might consider that ^_^
Last I heard, Roy had agreed to take over maintenance of Drupal. Best regards, Stu
I said once someone retired st_lim or he left. ;) At this point I'm saying "**** it" and I've put 4.7.4 in portage. The old ebuilds have been removed and drupal has been removed from package.mask too.
Thanks Roy. Best regards, Stu
thanks a lot! I think this bug can be closed then, feel free to reopen if i missed something.