Date: Fri, 11 Sep 2020 18:59:31 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 249256] www/drupal8 (8.8.7 in ports) please update to 8.8.8 (security fix) or 8.8.9 (bug fix) Message-ID: <bug-249256-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D249256 Bug ID: 249256 Summary: www/drupal8 (8.8.7 in ports) please update to 8.8.8 (security fix) or 8.8.9 (bug fix) Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: acm@FreeBSD.org Reporter: tech-lists@zyxst.net Assignee: acm@FreeBSD.org Flags: maintainer-feedback?(acm@FreeBSD.org) Hi, https://www.drupal.org/project/drupal/releases/8.8.8 says the following: [...] Release notes Maintenance and security release of the Drupal 8 series. This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the notes below and the security announcement: Drupal core - Critical - Cross-Site Request Forgery - SA-CORE-2020-004 Drupal core - Critical - Arbitrary PHP code execution - SA-CORE-2020-005 Drupal core - Less critical - Access bypass - SA-CORE-2020-006 https://www.drupal.org/sa-core-2020-004 https://www.drupal.org/sa-core-2020-005 https://www.drupal.org/sa-core-2020-006 No other fixes are included. [...] --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-249256-7788>