outline_designer 5.x-1.4
btopro - July 2, 2008 - 19:55
Official release from CVS tag: DRUPAL-5--1-4
First released: July 2, 2008 - 19:55
First released: July 2, 2008 - 19:55
Download: outline_designer-5.x-1.4.tar.gz
Size: 55.6 KB
md5_file hash: 432cfa77498cc37d325c3c1174c1cae1
Last updated: July 2, 2008 - 20:00
View usage statistics for this releaseSize: 55.6 KB
md5_file hash: 432cfa77498cc37d325c3c1174c1cae1
Last updated: July 2, 2008 - 20:00
Fixes SA-2008-043 - Outline designer - Privilege escalation.
here was a security hole that could potentially either corrupt a session or switch a user from one account to another (including the super user).
This was caused by a missing = sign. Hole was identified in two issue reports:
UPDATING THIS MODULE IS CRITICAL