drupal 6.7

Release notes

The seventh maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the 6.6 release:

  • - Patch #324118 by winterheart: fixed invalid XHTML being generated for forum topic listings.
  • - Patch #329019 by dww, sun: fixed PHP warning.
  • #315739 by sun: The theme name is in arg(4) on the block admin page, so only redirect to theme specific page if that is set.
  • - Patch #329646 by Damien Tournoud: properly reset user_access().
  • - Patch #255293 by Gribnif, maartenvg: incorrect regex causes some aggregated CSS to fail.
  • #329998 by pwolanin: escape markup looking non-HTML tags in schema descriptions
Download Size md5 hash
drupal-6.7.tar.gz 1.02 MB c9e8e5a9892538d355c62bd17b95b3a9
drupal-6.7.zip 1.2 MB 6263e37876670c5631701c42aad90ea7
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.7

drupal 6.6

Release notes

The sixth maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the 6.5 release:

  • - Patch #315656 by Damien Tournoud: fixed bug in drupal_lookup_path('wipe').
  • - Patch #285165 by Heine, Gabor: fixed wildcard loader names with numbers.
  • #285165 follow up by Damien Tournoud, pwolanin, chx: fixed wildcard loader problem
  • - Patch #293078 by lilou: correction for user-profile.tpl.php documentation.
  • - Patch #321165 by Dave Reid: fixed exceptions in XML-RPC library. Backported from CVS HEAD.
  • #260372 by andershal and nedjo: All translations were removed from translation set when deleting a node and only two nodes are left.
Download Size md5 hash
drupal-6.6.tar.gz 1.02 MB caaa55d1990b34dee48f5047ce98e2bb
drupal-6.6.zip 1.2 MB 28f2fbb871aa1e023c4377ba6ee8fbb1
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.6

Drupal 5.12

Release notes

The twelfth maintenance and security release of the Drupal 5 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

Download Size md5 hash
drupal-5.12.tar.gz 746.41 KB c07181e42894dc14438598f7772df434
drupal-5.12.zip 848.13 KB 37a6c3bb2a703e21833f1f7f0785bdfb
Last updated: December 24, 2010 - 22:08
Official release from tag: 
5.12

drupal 6.5

Release notes

The fifth maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the 6.4 release:

  • - Patch #246143 by bjaspan, Damien Tournoud: make sure updates are run in numeric order, not in definition order.
  • - Patch #221230 by Heine: convert requirement error on update to requirement warning.
  • - Patch #252430 by quicksketch: allow base theme prefix in preprocessor function names to correct expected behavior.
  • - Patch #245322 by mfb: fixed breadcrumb behavior.
  • - Patch #287949 by Freso, Damien Tournoud: keep language icons in consistent order across nodes.
  • - Patch #265899 by mfb: uri_brief mail token did not support https URLs.
Download Size md5 hash
drupal-6.5.tar.gz 1.02 MB a88c561f0e61168b6ac710de55b6f91f
drupal-6.5.zip 1.2 MB 6640c92ae16ab0b0e9010e33c183478e
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.5

Drupal 5.11

Release notes

The eleventh maintenance and security release of the Drupal 5 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed in the 5.11 release:

  • - Patch #265899 by mfb: uri_brief mail token did not support https URLs.
  • - Patch #170310 by mfb, JohnAlbin: avoid SSL cookie getting over-written by non-SSL cookie.
  • #296096 by Damien Tournoud. Fix 5.10 Postgres install & update.
  • - Patch #246143 by bjaspan, Damien Tournoud: make sure updates are run in numeric order, not in definition order.
  • #181831 by Rob Loach. Backport of #130630 by chx: provide an id on the form item wrapper div.
  • #283026 by Damien Tournoud. Make user_authenticate from external source (for existing users) work with no server part.
  • #298535 by mkalkbrenner. Correct HTTP status code for failed connection.
  • #108717 by add1sun and neclimdul. Code style.
  • - Patch #230932 by ryanlath: file_scan_directory() didn't scan the directory called '0'. Backport by cridenour.
  • follow up to #280621 by lilou: the object tag was disallowed in a previous version in filter_xss_admin(), so disallow param as well, which is only meaningful inside an object tag
  • #208270 reported by Dries, patch by jvandyk: it was not possible to clear the XML-RPC error cache, making it impossible to do multiple queries in one request. Add xmlrpc_clear_error() and slightly modify xmlrpc_error() to fix.
  • - Patch #308549 by lyrincz, Dave Reid: fixed broken link in PHPdoc.
  • #67895 patch by goba, tested by JirkaRybka and blackdog: move poll votes with poll options, when an option is removed, instead of dropping all old votes, solving an old data loss bug. Backport by dww.
  • #312730 by Damien Tournoud. hook_requirements('install') should work for modules that don't reside in the main './modules' folder.
Download Size md5 hash
drupal-5.11.tar.gz 746.37 KB de0936e4a991d1945129a56afcb6ef59
drupal-5.11.zip 848.07 KB c3bf517e3f5d57638d54183692e2af1b
Last updated: December 24, 2010 - 22:08
Official release from tag: 
5.11

Drupal 6.4

Release notes

The fourth maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the 6.3 release:

  • #225880 follow up by webchick: improve error message when writable settings.php is not present
  • - Patch #275801 by Damien Tournoud and Gribnif: fixed performance issue due to typo.
  • - Patch #281943 by webchick, Arancaytar, dropcube et al: order install profiles alphabetically.
  • - Patch #285467 by mustafau: fixed typo a MT blog API function.
  • - Patch #238600 by scor: removed two unused links from context-sentive help.
  • - Patch #268491 by mustafu, pwolanin, et al: fixed notice after deleting aggregator feed.
  • - Patch #293434 by eMPee584 and Damien: fixed broken watchdog call.
  • - Patch #254725 by Steve Dondley and BioALIEN: maxlength field for 'allowed HTML tags' is too short
  • - Patch #290918 by pwolanin: don't unset project info during processing.
  • - Patch #165642 by Damien Tournoud: error in SQL syntax in user.module.
  • - Patch #246522 by mustafu, Dries: fixed typo in documentation.
  • - Patch #283806 by mustafau, Aron Noval: improved error handling in drupal_http_request().
  • - Patch #290869 by Wim Leers: AHAH functionality was not working for radio buttons.
  • - Patch #293421 by Bart Jansens: fixed documentation of sess_count().
  • - Patch #290869 by swenterl, cwgordon07: fixed notice in #ahah handling.
  • - Patch #293343 by Bart Jansens: removed obsolete table name from documentation. Candidate for Most Trivial Patch of the Month Award.
  • - Patch #293504 by Damien Tournoud: fixed search on PostgreSQL - argument of AND must be type boolean, not type integer.
  • - Patch #283806 by mustafau: fixed bug in drupal_http_request()
Download Size md5 hash
drupal-6.4.tar.gz 1.02 MB 497b537285ad5847c1d3cb2f98ccf88c
drupal-6.4.zip 1.19 MB 29c29d2a7725d439e58633217601da91
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.4

Drupal 5.10

Release notes

The tenth maintenance and security release of the Drupal 5 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed in the 5.10 release:

  • #117748 by webchick, Pancho, Rob Loach, pwolanin: required field values were not properly trim()ed on validation
  • #207991 by Rok Zlender: xmlrpc_date did not parse dates well. Backport by clemens.tolboom.
  • Patch #254725 by Steve Dondley and BioALIEN: maxlength field for 'allowed HTML tags' is too short. Backport by scor.
  • - Patch #285467 by mustafau: fixed typo a MT blog API function.
  • #272636 by evolvingweb, dvessel: add 'js' class to html tag in drupal.js instead of overwriting all its classes with 'js'. Backport by sun.
  • #292538 by Damien Tournoud and hanoii. Fix $sidebar_indicator behavior.
Download Size md5 hash
drupal-5.10.tar.gz 744.63 KB 819a914e97de48d2b2a8ab6955d01215
drupal-5.10.zip 846.06 KB 4470f042157b8af25a056e457f5f477b
Last updated: December 24, 2010 - 22:08
Official release from tag: 
5.10

Drupal 5.9

Release notes

The ninth maintenance and security release of the Drupal 5 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes a security vulnerability. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed in the 5.9 release:

  • #281042 by schuyler1d. Render blocks before CSS and JS header generation.
  • #232433 by Damien Tournoud. Use non-localized date for RSS.
  • #281494 by beeradb. Code style.
  • #252580 by Robert Douglass, Gerhard Killesreiter, flobruit: avoid division by zero, when all search weights are set to 0.
  • #252921 by David_Rothstein and agentrickard: remove unused join, which caused column type compatibility problems with postgresql; improves postgresql compatibility.
  • #128846 by takashi, chx, bdragon, wedge, salvis, Shiny: rewritten queries on PostreSQL need to have matching DISTINCT ON and ORDER BY expressions
  • #280934. Make sure session is always regenerated.
Download Size md5 hash
drupal-5.9.tar.gz 738.79 KB 2937fd1503ee3d22d232e259d839e314
drupal-5.9.zip 839.53 KB f175c3b1b6a2d064716e4089ec5f8b06
Last updated: December 24, 2010 - 22:08
Official release from tag: 
5.9

Drupal 5.8

Release notes

The eighth maintenance and security release of the Drupal 5 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities and also changes APIs. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed in the 5.8 release:

  • #215252 by bdragon: reset the cache flush variable before the cache is flushed, so busy sites will not attempt multiple cache flushes at a time
  • #165642 by Bart Jansens. Use a local variable rather than overwriting the global $user.
  • Remove typo.
  • #157652 by beginner, Steven Merrill and killes: block_user() had a global user object and a user parameter colliding
  • #216404 by Rob Loach: path_nodeapi() only worked for users with permissions, although node loading requires the path to be loaded.
  • #101904 by David_Rothstein. Make secondary links work for primary links with '' path.
  • #84754: fix 404 and 403 error pages if the path set for these error pages does not exist
  • #176503 by chx and bennybobw: hidden profile fields cannot be required and cannot be put on the registration form, so we needed warnings on the editing form to not let admins save forms set with these combinations.
    Backport by Bart Jansens.
  • #104220 by ChrisKennedy: remove arbitrary half post max size restriction on maximum uploadable file size.
    Backport by Bart Jansens.
  • #209488 by Bart Jansens. Use mysqli_connect_error() when mysqli database connection fails.
  • #211825 by webchick. Fix revision revert log message.
  • #213172 by skiquel: let color module run properly without a base image
  • #212864 suggestion by pp, patch by gdevlugt: use format_date() for RSS item dates instead of date() to honor site time zone settings
  • #171951 by dvessel: fix account specific theme selection form
    Backport in #109459.
  • #208023 by traxer. Order node/add by name, not internal type.
  • #204415 by pwolanin et al. Blacklist problematic machine-readable content type names.
  • #75916 follow up patch by Richard Eriksson: allow aggregator pages to be indexed by default
  • #113318 by dww: correct Postgres support.
  • #176273 by Bart Jansens. Fix argument order.
  • #227548 by Heine, AjK: misuse of db_escape_string(), when db_escape_table() should have been used
  • #244597 by kbahey: remove cruft from user_login(), that added extra message to the form was never used or displayed
  • #232037 by pwolanin: (performance) block regions should only be populated when called for, not in all cases (fixes performance expectation on 403/404 pages)
  • #226869 by boydj and hswong3i: minor code style cleanup with aggregator module queries
  • #175743 by Desbeers: fix numerous issues around node submission dates and content editing.
    5.x backport by Freso.
  • - Patch #231132 by snufkin: fixed invalid XML-RPC error messages due to HTML tags being inserted in the message string.
  • #208888 by jvandyk: set access time when externally authenticated user first logs in
    Backport by joshk and stevecrozz.
  • #246476 by Jacine. Correct block admin column count.
  • #104662 by chx: the search block form might not be available on the search page itself, so that target was not right for search block form submissions. Backport by webchick.
  • - Patch #258128 by webchick: @parameter should be @param. Gets the Most Trivial Patch of the Month Award.
    Backport by gpk.
  • #140162 by maartenvg. Clear the PHP stat cache after resizing images.
  • #214390 by shrop. Partial backport of #153998, use a separate permission for blogapi since it does not depend on blog module.
  • #264647 by clemens.tolboom. Fix seconds parsing for XML-RPC dates.
  • #155337 by gpk and Bevan: only treat newlines teaser breakers, if the newline filter is present in the particular input format
  • - Patch #169899 by Island Usurper: taxonomy caching not always working.
  • #171461 by chx, ejhildreth and dvessel: empty tbody fails validation. Backport by m1mic.
  • #193891 by mvc: fix NOTICE in database.mysqli.inc because of possibly missing port number
  • - Patch #273761 by catch: removed inconsistent delete behavior of nodes. It would leave comments, ratings, etc behind in the database.
  • #159538 by Wesley Tanaka. 404 instead of showing recent blog posts for invalid paths.
  • - Patch #180646 by John Morahan: SQL in taxonomy_get_term_by_name() should use = instead of LIKE.
  • #276615 by JacobSingh. Clear page cache when CSS cache is cleared?
Download Size md5 hash
drupal-5.8.tar.gz 738.58 KB 2a570ce3cb6a104c2cc540a02a3cb11d
drupal-5.8.zip 839.3 KB 649825d1ea25138f91fe89e6d74e05cc
Last updated: December 24, 2010 - 22:08
Official release from tag: 
5.8

drupal 6.3

Release notes

The third maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the 6.2 release:

  • - Patch #245904 by boombatower: fixed E_NOTICE warning in the XML-RPC library.
  • - Patch #245826 by Jax: trust_root is not set for OpenID 1.0 due to an undefined variable.
  • - Patch #244942 by pwolanin: fixed outdated function name in schema description.
  • - Patch #236242 by jpoesen and Garrett Albright: fixed two typos in the node module's install file.
  • - Patch #232433 by mfb: make sure RSS feeds validate.
  • - Patch #249941 by John Morahan: fixed incorrect parameters of watchdog() calls.
Download Size md5 hash
drupal-6.3.tar.gz 1.01 MB f6a23149b906048d8a2dce1bad0e11a7
drupal-6.3.zip 1.19 MB efae0b161c31394650f5db12d4fce379
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.3

Drupal 7.x-dev

Release notes

This is a development snapshot release for the 7.x series. This is not stable, and production sites should not run this code. However, users wishing to help test and develop the next version of Drupal are encouraged to use this for test sites.

Download Size md5 hash
drupal-7.x-dev.tar.gz 3.1 MB ba668c443d4f97c8abaee6ddd9236e5c
drupal-7.x-dev.zip 3.57 MB dd4330d3ceed6fd0503bcfe0f02450cf
Last updated: June 17, 2015 - 18:38
Last packaged version: 7.38+5-dev
Nightly development snapshot from branch: 
7.x

drupal 6.2

Release notes

The second maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities and also changes APIs. Sites are urged to upgrade immediately after reading the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the 6.1 release:

  • #228120 by jvandyk: typo in documentation in comment.tpl.php
  • #226480 by gpk: fix wording on when node access rebuild button is displayed in node_configure()
  • #229817 by mcarrera: l() attributes were not properly specified in theme.inc's theme_username()
  • #234403 by alienbrain: PHP.net documents we should use CRLF in mail headers, so do that
  • #226555 by jvandyk, Rok Zlender: fix notice level error in xmlrpc.inc
  • #204415 by chx: actually use 'administer content types' permission for node type editing instead of 'administer nodes'
  • #234699 by hass: theme_link() did not mark frontpage links active properly
  • #237717 by hass: missing t() in system_clear_cache_submit()
  • #232037 by pwolanin: (performance) block regions should only be populated when called for, not in all cases (fixes performance expectation on 403/404 pages)
  • #226728 by chx: (performance) temporary cache table entries were not flushed, causing cache_menu and cache_form to grow big
  • #231587 by pwolanin, killes: (performance) use two level cache in menus, instead of storing very large amounts of data multiple times
  • #239196 by jvandyk and myself: missing status check on nodes in search indexing counter
  • rolling back #234403 by Bevan and damz: we should keep using LF in mail headers, without CR, CRLF causes problems
  • #238564 by scor: two missing t() calls in update.module
  • #241629 by solotandem: dblog module left one more row in, when cleaning up in cron
  • #244597 by kbahey: remove cruft from user_login(), that added extra message to the form was never used or displayed
Download Size md5 hash
drupal-6.2.tar.gz 1.01 MB 4c5af590b42b5a8e826177119c7e73b3
drupal-6.2.zip 1.19 MB c80271af1f940e82fc6cd3c03aaeee15
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.2

drupal 6.1

Release notes

The first maintenance and security release of the Drupal 6 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately. For more details, please see the security announcement:

Download Size md5 hash
drupal-6.1.tar.gz 1.01 MB 32bfd0b3a8a48e3f631e0a396ec96f68
drupal-6.1.zip 1.19 MB e1b3988d8643aedeecb241050ecbb80c
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.1

drupal 6.0

Release notes

Download Size md5 hash
drupal-6.0.tar.gz 1.01 MB 2138bd9f79906bd39c5dcc5289446c01
drupal-6.0.zip 1.19 MB 7615502856425485a94900b65edf2423
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.0

drupal 6.0-rc4

Release notes

For more information on this release candidate and about compatible modules, themes and translations, refer to: http://drupal.org/drupal-6.0-rc4

Download Size md5 hash
drupal-6.0-rc4.tar.gz 1.01 MB 35f04f54be270cfe55ea19b249c40c36
drupal-6.0-rc4.zip 1.19 MB 6811988d6bf497e398d593afcecda1d7
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.0-rc-4

drupal 6.0-rc3

Release notes

For more information on this release candidate and about compatible modules, themes and translations, refer to: http://drupal.org/drupal-6.0-rc3

This release candidate fixes a security vulnerability. Those running the previous release candidate are urged to upgrade immediately. For more details, please see the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the first release candidate:

  • #208427 report by Pancho, patch by dvessel: strpos() parameters were flipped in color module, resulting in bad colors
  • #208197 by dvessel: back to cloning the table header only in tableheader.js (fixes radio button issues and Safari 2 crashing)
  • - Patch #210140 by dww: fixed code comment: 'default_major' is now deprecated in favor of 'supported_majors'.
  • - Patch #209236 by traxer: added a validation function for the poll form.
  • - Patch #206495 by jvandyk: improved consistency of trigger descriptions.
Download Size md5 hash
drupal-6.0-rc3.tar.gz 1 MB c7deaf2f7d3a4d89cf2413fcc5bb728a
drupal-6.0-rc3.zip 1.19 MB 7577d67eab50ffcb4d7ec05b8c4ba36e
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.0-rc-3

Drupal 5.7

Release notes

The 7th maintenance release of the Drupal 5 series. Only fixes for bugs have been committed. New features are only added to in-development versions of Drupal.

The following bugs have been fixed since the 5.6 release:

Download Size md5 hash
drupal-5.7.tar.gz 737 KB c7d9911ad1001c790bbdfe6fd4cdfc89
drupal-5.7.zip 838.14 KB a1089451048fc5616a85bfa20612cf7f
Last updated: December 24, 2010 - 22:08
Official release from tag: 
5.7

drupal 6.0-rc2

Release notes

For more information on this release candidate and about compatible modules, themes and translations, refer to: http://drupal.org/drupal-6.0-rc2

This release candidate fixes security vulnerabilities. Those running the previous release candidate are urged to upgrade immediately. For more details, please see the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the first release candidate:

  • #199241 by bjaspan, Heine: fix documentation on how confirm forms are constructed; port of Drupal 5 fix
  • #202925 report by beholder, patch by myself: (notice fix) only consider languages with a host set when comparing with the current host in domain language negotiation
  • #202895 by cwgordon7, theborg: fix node revision view page load argumnets
Download Size md5 hash
drupal-6.0-rc2.tar.gz 1022.31 KB 75962b1deeac60d12c2ba03a04e588c9
drupal-6.0-rc2.zip 1.18 MB 5b11958db52e7954661d2b7ef58b5d8e
Last updated: December 24, 2010 - 22:08
Official release from tag: 
6.0-rc-2

Drupal 4.7.11

Release notes

The eleventh maintenance and security release of the Drupal 4.7 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately. For more details, please see the security announcement:

Download Size md5 hash
drupal-4.7.11.tar.gz 481.07 KB b3cd74a717ef66d37927eb08e272adb2
drupal-4.7.11.zip 559.29 KB 93d1913295e2ec37f2a336f44c24fa9d
Last updated: December 24, 2010 - 22:08
Official release from tag: 
4.7.11

Drupal 5.6

Release notes

The sixth maintenance and security release of the Drupal 5 series. Only fixes for security vulnerabilities and other bugs have been committed. New features are only being added to the forthcoming Drupal 7.0 release.

This release fixes security vulnerabilities. Sites are urged to upgrade immediately. For more details, please see the security announcement:

In addition to this security vulnerability, the following bugs have been fixed since the 5.5 release:

  • #173858 by Gábor Hojtsy: skip UTF-8 BOM when importing locale files
  • #179164 by Heine: sort modules by name on the module admin page
  • #199640 by webernet: (usability) add option to select no taxonomy term in multiselect forms, not to rely on browser trickery
  • #199084 by chx: better conformance with ISO date formats in our xmlrpc code
Download Size md5 hash
drupal-5.6.tar.gz 736.73 KB c276a585821f87f09061bf7641eaa199
drupal-5.6.zip 837.68 KB d6ed8e3ab008905dfcafd309b6054755
Last updated: December 24, 2010 - 22:08
Official release from tag: 
5.6

Pages

Subscribe with RSS Subscribe to Releases for Drupal core