HomeBlogsivica's blog

Drupal 6.1 security fix

Submitted by ivica on Thu, 28/02/2008 - 09:56

New version of Drupal is out. Upgrade is very recommended because this version fixed cross site scripting bug that can allow users to inject arbitrary HTML and script code in certain pages. Also couple of minor bugs are fixed.

This was a nice chance to test new update module that is now shipped in core of Drupal install. When I went to admin/build/modules link and hit check available updates nice red message warn me about security update:

After clicking to available updates link next page informed me about status of new updates:

Very nice. The only thing I am missing here is automatic update of Drupal system - maybe we will see this in next version 7.0 ;)

Tags:

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Internal paths in double quotes, written as "internal:node/99", for example, are replaced with the appropriate absolute URL or relative path.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Copy the characters (respecting upper/lower case) from the image.