SECURITY: Fedora 37 Update: drupal7-7.92-1.fc37
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-c4334d5277
2022-11-10 22:04:44.630660
--------------------------------------------------------------------------------
Name : drupal7
Product : Fedora 37
Version : 7.92
Release : 1.fc37
URL : https://www.drupal.org
Summary : An open-source content-management platform
Description :
Equipped with a powerful blend of features, Drupal is a Content Management
System written in PHP that can support a variety of websites ranging from
personal weblogs to large community-driven websites. Drupal is highly
configurable, skinnable, and secure.
--------------------------------------------------------------------------------
Update Information:
- [7.92]( https://www.drupal.org/project/drupal/releases/7.92) -
[7.91]( https://www.drupal.org/project/drupal/releases/7.91) - [SA-
CORE-2022-012 / CVE-2022-25275]( https://www.drupal.org/sa-core-2022-012) -
[7.90]( https://www.drupal.org/project/drupal/releases/7.90) -
[7.89]( https://www.drupal.org/project/drupal/releases/7.89) -
[7.88]( https://www.drupal.org/project/drupal/releases/7.88) - [SA-
CORE-2022-003 / CVE-2022-25271]( https://www.drupal.org/sa-core-2022-003) -
[7.87]( https://www.drupal.org/project/drupal/releases/7.87) -
[7.86]( https://www.drupal.org/project/drupal/releases/7.86) - [SA-
CORE-2022-001 / CVE-2021-41184]( https://www.drupal.org/sa-core-2022-001) -
[SA-CORE-2022-002 / CVE-2021-41182 / CVE-2021-41183 / CVE-2016-7103 /
CVE-2010-5312]( https://www.drupal.org/sa-core-2022-002) -
[7.85]( https://www.drupal.org/project/drupal/releases/7.85) -
[7.84]( https://www.drupal.org/project/drupal/releases/7.84) -
[7.83]( https://www.drupal.org/project/drupal/releases/7.83)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 15 2022 Shawn Iwinski - 7.92-1
- Update to 7.92
- SA-CORE-2022-012 / CVE-2022-25275
- SA-CORE-2022-003 / CVE-2022-25271 (RHBZ #2055472, 2055473)
- SA-CORE-2022-001 / CVE-2021-41184
- SA-CORE-2022-002 / CVE-2021-41182 / CVE-2021-41183
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2055472 - CVE-2022-25271 drupal7: drupal: improper input validation found via drupal core api [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2055472
[ 2 ] Bug #2055473 - CVE-2022-25271 drupal7: drupal: improper input validation found via drupal core api [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2055473
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-c4334d5277' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
A drupal7 security update has been released for Fedora 37.
