Thursday, June 18, 2015

Security release: Drupal 6 and 7

The Drupal project released a new version that fixes several security issues; Upgrading your existing Drupal 7 and 6 sites is strongly recommended.

The new version fixes:
  • A vulnerability found in the OpenID module that allows a malicious user to log in as other users on the site, including administrators, and hijack their accounts
  • Other less critical issues 
In response to the new version we have released Bitnami Drupal 7 and 6 installers, virtual machines and Amazon EC2, GoogleAzure, and VMware cloud images that fix these issues. There are no new features or non-security-related bug fixes in these releases.

Have questions about Bitnami Drupal? Post to our community forum, and we would be happy to help you.  Or click here for a complete overview by the The Drupal Security Team.