Re: "highly critical" DRUPAL-PSA-2018-001

[Ola Lundqvist <ola@inguza.com>]

Hi Markus

Upstream have now released more information.

Best regards

// Ola

On 28 March 2018 at 00:24, Markus Koschany <apo@debian.org> wrote:

Am 27.03.2018 um 21:12 schrieb Adrian Zaugg:
>
> Dear LTS Team
>
> The Drupal Security Team announced a patch for Drupal 7 and 8 for March,
> 28th. The security hole is classified as "highly critical" [1]. They
> state that "because exploits might be developed within hours or days"
> one should update on March 28th 2018 between 18:00 - 19:30 UTC. I
> haven't read something about this vulnerability on the LTS mailing list,
> so I wanted to bring up your attention to it.
>
> Thank you!
>
> Best regards, Adrian.
>
> [1] https://www.drupal.org/psa-2018-001

Thank you for the pointer. We are aware of the issue and I will take
care of it as soon as upstream has released more information.

Regards,

Markus

--

 --- Inguza Technology AB --- MSc in Information Technology ----

/  ola@inguza.com                    Folkebogatan 26            \

|  opal@debian.org                   654 68 KARLSTAD            |

|  http://inguza.com/                Mobile: +46 (0)70-332 1551 |

\  gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9  /

 ---------------------------------------------------------------