[gentoo-announce] [ GLSA 201606-05 ] spice: Multiple vulnerabilities

[news 28]

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

 

- -------------------------------------------------------------------------

Debian Security Advisory DSA-3604-1 security ( -at -) debian.org

https://www.debian.org/security/ Moritz Muehlenhoff

June 16, 2016 https://www.debian.org/security/faq

- -------------------------------------------------------------------------

 

Package : drupal7

CVE ID : not yet available

 

A privilege escalation vulnerability has been found in the User module

of the Drupal content management framework. For additional information,

please refer to the upstream advisory at

https://www.drupal.org/SA-CORE-2016-002

 

For the stable distribution (jessie), this problem has been fixed in

version 7.32-1+deb8u7.

 

For the unstable distribution (sid), this problem has been fixed in

version 7.44-1.

 

We recommend that you upgrade your drupal7 packages.

 

Further information about Debian Security Advisories, how to apply

these updates to your system and frequently asked questions can be

found at: https://www.debian.org/security/