-
drupal6 (6.16-1ubuntu0.1) lucid-security; urgency=low
* SECURITY UPDATE: Multiple vulnerabilities and weaknesses
(OpenID authentication bypass, file download access bypass,
comment unpublishing bypass, and actions cross site scripting)
were discovered in Drupal. (LP: #539056)
- debian/patches/21_SA-CORE-2010-002.dpatch
- CVE-2010-3685
- CVE-2010-3686
- SA-CORE-2010-002
-- Artur Rona <email address hidden> Tue, 28 Dec 2010 01:23:57 +0100
-
drupal6 (6.16-1) unstable; urgency=high
[ Luigi Gangitano ]
* Urgency high due to security fixes
* New upstream release
- Fixes multiple vulnerabilities (Closes: #572439)
(Ref: SA-CORE-2010-001, CVE-TBA)
drupal6 (6.15-2) UNRELEASED; urgency=low
[ Alexandre De Dommelin ]
* Added patch to remove warnings about Drupal core updates (Closes: #521288)
* Bump Standards-Version from 3.8.3 to 3.8.4 (no changes needed)
-- Nicola Ferralis <email address hidden> Mon, 12 Apr 2010 11:54:09 +0100
-
drupal6 (6.15-1) unstable; urgency=low
* New upstream release (Closes: #561726)
- Fixes several XSS vulnerabilities (Closes: #562165)
(Ref: SA-CORE-2009-009, CVE-2009-4369, CVE-2009-4370, CVE-2009-4371)
* debian/rules
- Use dh_prep instead of dh_clean -k
* debian/control
- Upgraded versioned dependency on debhelper to 7
* debian/README.source
- Added directions on source handling
-- Ubuntu Archive Auto-Sync <email address hidden> Mon, 18 Jan 2010 07:30:21 +0000
-
drupal6 (6.14-1) unstable; urgency=low
* New upstream release
- Removed security patches integrate upstream
+ 20_SA-CORE-2009-007
- Fixes multiple vulnerabilities (Ref: SA-CORE-2009-008)
(Closes: #547140)
* debian/control
- Bumped Standard-Version to 3.8.3, no change needed
* debian/compat
- Switch debhelper compatibility to 7
* debian/copyright
- Added reference to copyright file with version
drupal6 (6.13-1) UNRELEASED; urgency=low
* New upstream release
-- Bhavani Shankar <email address hidden> Fri, 04 Dec 2009 22:13:40 +0000
-
drupal6 (6.12-1.1ubuntu2) lucid; urgency=low
* debian/control, debian/drupal6.postinst: Drop wwwconfig as we get it ready for main.
-- Chuck Short <email address hidden> Fri, 04 Dec 2009 13:37:42 -0500
-
drupal6 (6.12-1.1ubuntu1) karmic; urgency=high
* debian/patches/21_SA-CORE-2009-008.dpatch:
- Fixed security issues (session fixation),
see SA-CORE-2009-008 (LP: #431080).
* debian/README.source: Added for silence lintian's warning.
-- Artur Rona <email address hidden> Sat, 10 Oct 2009 18:42:02 +0200