Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted drupal7 7.52-2+deb9u12 (source) into oldstable
Date: Wed, 18 Nov 2020 20:30:12 +0000
Signed by: Gunnar Wolf <gwolf@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 18 Nov 2020 14:00:18 -0600
Source: drupal7
Architecture: source
Version: 7.52-2+deb9u12
Distribution: stretch-security
Urgency: medium
Maintainer: Gunnar Wolf <gwolf@debian.org>
Changed-By: Gunnar Wolf <gwolf@debian.org>
Changes:
 drupal7 (7.52-2+deb9u12) stretch-security; urgency=medium
 .
   * SA-CORE-2020-007: XSS due to the Drupal API not disabling JSONP
   * SA-CORE-2020-012: Remote code execution due to unsanitized filenames
     on uploaded files
Checksums-Sha1:
 8c4eb8ec2fadced87ccae59700cf3e25e89698c9 1276 drupal7_7.52-2+deb9u12.dsc
 29c4225fe7fcbb1245ebf4617b22eb3c92a163ea 227328 drupal7_7.52-2+deb9u12.debian.tar.xz
 42b72ba5941d607ba90d463ce7381adc05fb8919 8847 drupal7_7.52-2+deb9u12_source.buildinfo
Checksums-Sha256:
 6c71f1a16fed19a08cc32eb7142d4668758ca7187a8b2598afcecafdf6913b20 1276 drupal7_7.52-2+deb9u12.dsc
 aed76d40071a1357cf0e7690fe8aeaf88d34c392880d51117b668b23137b0227 227328 drupal7_7.52-2+deb9u12.debian.tar.xz
 7e508b536d23d7eba2f94844ec485168ba14e46191b6b48568015accbb121b0e 8847 drupal7_7.52-2+deb9u12_source.buildinfo
Files:
 e101c6aef0846db1eaad7af68b67a41d 1276 web extra drupal7_7.52-2+deb9u12.dsc
 27da4ea271a340e05cabb5d65c835db5 227328 web extra drupal7_7.52-2+deb9u12.debian.tar.xz
 3e2758af7328734de8a0bf8b24e49749 8847 web extra drupal7_7.52-2+deb9u12_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iHUEARYIAB0WIQRgswk9lhCOXLlxQu/i9jtDU/RZiQUCX7WAzgAKCRDi9jtDU/RZ
if+gAQC0sjQsSv6TR7HqkTq/lXsid1lUCH1X8kGhdzl+Y+TQ1AEA0u8lEXPRV3s/
pRfD6nwXkmZ2QYC35Ifk0xFgMgOIhQU=
=YTi3
-----END PGP SIGNATURE-----

News for package drupal7