FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

drupal -- multiple vulnerabilities

Affected packages
	drupal7	<	7.44
	drupal8	<	8.1.3

Details

VuXML ID	7932548e-3427-11e6-8e82-002590263bf5
Discovery	2016-06-15
Entry	2016-06-17
Modified	2016-07-16

Drupal Security Team reports:

Saving user accounts can sometimes grant the user all roles (User module - Drupal 7 - Moderately Critical)

Views can allow unauthorized users to see Statistics information (Views module - Drupal 8 - Less Critical)

[source]

References

CVE Name	CVE-2016-6211
CVE Name	CVE-2016-6212
URL	http://www.openwall.com/lists/oss-security/2016/07/13/7
URL	https://www.drupal.org/SA-CORE-2016-002