| Pacchetto: | drupal6 |
| Data: | 2012-02-05 |
| Pubblicata da: | Miklos Vajna |
| Versione vulnerabile: | 6.22-1 |
| Versione non infettata: | 6.24-1mores1 |
| Entrata Bug Tracker: | https://bugs.frugalware.org/ticket/4654 |
| CVEs: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0825 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0826 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0827 |
| Descrizione: | A security issue and a vulnerability have been reported in Drupal, which can be exploited by malicious people to manipulate certain data and bypass certain security restrictions. 1) The security issue is caused due to the OpenID module not properly verifying the signature of Attribute Exchange (AX) information, which can be exploited to manipulate AX information. 2) An error in the File module when using certain field access modules can be exploited to download private files which would otherwise be restricted. |
Donazioni
Dona per supportare i nostri sforzi.
Lingue
|
|
|
|
|
|
|
|
|
Condividi
Aggiornamenti recenti
apps/meanwhile
1.0.2-4-x86_64
apps/meanwhile
1.0.2-4-i686
devel-extra/pytz
2012c-1-x86_64
devel-extra/pytz
2012c-1-i686
xlib/flashplugin
11.2.202.235-fermus1-x86_64
xlib/flashplugin-kde
11.2.202.235-fermus1-x86_64
xlib/flashplugin
11.2.202.235-1-x86_64
xlib/flashplugin-kde
11.2.202.235-1-x86_64
xlib/flashplugin
11.2.202.235-fermus1-i686
xlib/flashplugin-kde
11.2.202.235-fermus1-i686
1.0.2-4-x86_64
apps/meanwhile
1.0.2-4-i686
devel-extra/pytz
2012c-1-x86_64
devel-extra/pytz
2012c-1-i686
xlib/flashplugin
11.2.202.235-fermus1-x86_64
xlib/flashplugin-kde
11.2.202.235-fermus1-x86_64
xlib/flashplugin
11.2.202.235-1-x86_64
xlib/flashplugin-kde
11.2.202.235-1-x86_64
xlib/flashplugin
11.2.202.235-fermus1-i686
xlib/flashplugin-kde
11.2.202.235-fermus1-i686
Rilasci
frugalware-1.6 (Fermus)
Feb 13, 2012
frugalware-1.5 (Mores)
Aug 15, 2011
frugalware-1.4 (Nexon)
Feb 13, 2011
frugalware-1.3 (Haven)
Aug 23, 2010
frugalware-1.2 (Locris)
Mar 8, 2010
frugalware-1.1 (Getorin)
Sep 7, 2009
frugalware-1.0 (Anacreon)
Mar 22, 2009
frugalware-0.9 (Solaria)
Sep 9, 2008
frugalware-0.8 (Kalgan)
Mar 11, 2008
frugalware-0.7 (Sayshell)
Oct 13, 2007
frugalware-0.6 (Terminus)
Mar 22, 2007
frugalware-0.5 (Siwenna)
Sep 14, 2006
frugalware-0.4 (Wanda)
Mar 30, 2006
frugalware-0.3 (Trantor)
Oct 13, 2005
frugalware-0.2 (Aurora)
Apr 28, 2005
frugalware-0.1 (Genesis)
Nov 02, 2004
Informazioni
Informazioni del server
Tempo di attività:
88 giorno(i) 1 h 49 m 6 s
88 giorno(i) 1 h 49 m 6 s