Fedora: 2009-0678 Critical Admin Access Threat for Drupal 6.9-1

Equipped with a powerful blend of features, Drupal is a Content Management

System written in PHP that can support a variety of websites ranging from

personal weblogs to large community-driven websites. Drupal is highly

configurable, skinnable, and secure.

SA-CORE-2009-001 ( https:// ) Remember to log in to your

site as the admin user before upgrading this package. After upgrading the

package, browse to to run the upgrade script.

* Thu Jan 15 2009 Jon Ciesla - 6.9-1

- Upgrade to 6.9, DRUPAL-SA-CORE-2009-001.

* Thu Dec 11 2008 Jon Ciesla - 6.7-1

- Upgrade to 6.7, SA-2008-073.

* Wed Oct 22 2008 Jon Ciesla - 6.6-1

- Upgrade to 6.6, SA-2008-067.

* Thu Oct 9 2008 Jon Ciesla - 6.5-1

- Upgrade to 6.5, SA-2008-060.

- Added notes to README and drupal.conf re CVE-2008-3661.

* Thu Aug 14 2008 Jon Ciesla - 6.4-1

- Upgrade to 6.4, SA-2008-047.

* Thu Jul 10 2008 Jon Ciesla - 6.3-1

- Upgrade to 6.3, upstream security fixes, SA-2008-044.

su -c 'yum update drupal' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/