Ubuntu
drupal6 package

Change logs for drupal6 source package in Lucid

  1. Lucid (10.04)
  2. Change log 
  • drupal6 (6.16-1ubuntu0.1) lucid-security; urgency=low

  * SECURITY UPDATE: Multiple vulnerabilities and weaknesses
    (OpenID authentication bypass, file download access bypass,
    comment unpublishing bypass, and actions cross site scripting)
    were discovered in Drupal. (LP: #539056)
    - debian/patches/21_SA-CORE-2010-002.dpatch
    - CVE-2010-3685
    - CVE-2010-3686
    - SA-CORE-2010-002
 -- Artur Rona <email address hidden>   Tue, 28 Dec 2010 01:23:57 +0100
  • drupal6 (6.16-1) unstable; urgency=high

  [ Luigi Gangitano ]  
  * Urgency high due to security fixes

  * New upstream release
    - Fixes multiple vulnerabilities (Closes: #572439)
      (Ref: SA-CORE-2010-001, CVE-TBA)

drupal6 (6.15-2) UNRELEASED; urgency=low

  [ Alexandre De Dommelin ]
  * Added patch to remove warnings about Drupal core updates (Closes: #521288)
  * Bump Standards-Version from 3.8.3 to 3.8.4 (no changes needed)
 -- Nicola Ferralis <email address hidden>   Mon,  12 Apr 2010 11:54:09 +0100
  • drupal6 (6.15-1) unstable; urgency=low

  * New upstream release (Closes: #561726)
    - Fixes several XSS vulnerabilities (Closes: #562165)
      (Ref: SA-CORE-2009-009, CVE-2009-4369, CVE-2009-4370, CVE-2009-4371)

  * debian/rules
    - Use dh_prep instead of dh_clean -k

  * debian/control
    - Upgraded versioned dependency on debhelper to 7

  * debian/README.source
    - Added directions on source handling
 -- Ubuntu Archive Auto-Sync <email address hidden>   Mon,  18 Jan 2010 07:30:21 +0000
  • drupal6 (6.14-1) unstable; urgency=low

  * New upstream release
    - Removed security patches integrate upstream
      + 20_SA-CORE-2009-007
    - Fixes multiple vulnerabilities (Ref: SA-CORE-2009-008)
      (Closes: #547140)

  * debian/control
    - Bumped Standard-Version to 3.8.3, no change needed

  * debian/compat
    - Switch debhelper compatibility to 7

  * debian/copyright
    - Added reference to copyright file with version

drupal6 (6.13-1) UNRELEASED; urgency=low

  * New upstream release
 -- Bhavani Shankar <email address hidden>   Fri,  04 Dec 2009 22:13:40 +0000
  • drupal6 (6.12-1.1ubuntu2) lucid; urgency=low

  * debian/control, debian/drupal6.postinst: Drop wwwconfig as we get it ready for main.
 -- Chuck Short <email address hidden>   Fri, 04 Dec 2009 13:37:42 -0500
  • drupal6 (6.12-1.1ubuntu1) karmic; urgency=high

  * debian/patches/21_SA-CORE-2009-008.dpatch:
    - Fixed security issues (session fixation),
      see SA-CORE-2009-008 (LP: #431080).
  * debian/README.source: Added for silence lintian's warning.

 -- Artur Rona <email address hidden>   Sat, 10 Oct 2009 18:42:02 +0200