Deprecated - Security advisories for Drupal core | Drupal.org

This forum is deprecated — view current Drupal core security advisories

Drupal Core - Multiple Vulnerabilities - SA-CORE-2018-006

By Drupal Security Team on 17 Oct 2018 at 16:42 UTC

Advisory ID: DRUPAL-SA-CORE-2018-006
Project: Drupal core
Version: 7.x, 8.x
Date: 2018-October-17

Drupal Core - 3rd-party libraries -SA-CORE-2018-005

By Drupal Security Team on 1 Aug 2018 at 18:54 UTC

Advisory ID: DRUPAL-SA-CORE-2018-005
Project: Drupal core
Version: 8.x
CVE: CVE-2018-14773
Date: 2018-August-01

Drupal Core - Multiple Vulnerabilities - SA-CORE-2017-004

By Drupal Security Team on 16 Aug 2017 at 16:38 UTC

Drupal 8.3.7 is a maintenance release which contain fixes for security vulnerabilities.

Drupal Core - Multiple Vulnerabilities - SA-CORE-2017-003

By Drupal Security Team on 21 Jun 2017 at 17:44 UTC

Drupal 8.3.4 and Drupal 7.56 are maintenance releases which contain fixes for security vulnerabilities.

Drupal Core - Critical - Access Bypass - SA-CORE-2017-002

By Drupal Security Team on 19 Apr 2017 at 17:13 UTC

Advisory ID: DRUPAL-SA-CORE-2017-002
Project: Drupal core
Version: 8.x
Date: 2017-April-19
CVEID: CVE-2017-6919
Security risk: 17/25 ( Critical) AC:Basic/A:User/CI:All/II:All/E:Theoretical/TD:Default
Vulnerability: Access bypass

Drupal Core - Multiple Vulnerabilities - SA-CORE-2017-001

By Drupal Security Team on 15 Mar 2017 at 19:24 UTC

Drupal 8.2.7, a maintenance release which contains fixes for security vulnerabilities, is now available for download.

Pages

Subscribe with RSS