[drupal-devel] Bug#323347: Another XMLRPC issue in drupal

Steve Langasek vorlon at debian.org
Tue Aug 30 20:32:08 UTC 2005


Version: 4.5.5-1

On Tue, Aug 30, 2005 at 10:17:18PM +0200, Karoly Negyesi wrote:
> >>> The new upstream release 4.5.4 resolves this issue.
> >
> >If the bugs are fixed in the current version then they should be closed
> >*now*, not waiting until the next upload.

> Version 4.5.5 (and 4.6.3) does not have an XML-RPC security hole to our  
> best knowledge.

Then I'm closing this bug, so that we can get the security-fixed version
of drupal into testing today.

Thanks,
-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
vorlon at debian.org                                   http://www.debian.org/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://drupal3.drupal.org/pipermail/development/attachments/20050830/9c6af197/attachment.pgp


More information about the drupal-devel mailing list