Update alert for Drupal

Published 2016-07-12 by Jochen Lillich

The Drupal Security Team has released Drupal Security Advisory PSA-2016-001 today. They urge Drupal users to update a number of 3rd party Drupal 7 modules immediately when new versions are released on Wednesday, 13 July. Because of possible remote code execution, the advisory classifies the risk level as “Highly Critical”.

There will be multiple releases of Drupal contributed modules on Wednesday July 13th 2016 16:00 UTC that will fix highly critical remote code execution vulnerabilities (risk scores up to 22/25). These contributed modules are used on between 1,000 and 10,000 sites. The Drupal Security Team urges you to reserve time for module updates at that time because exploits are expected to be developed within hours/days. Release announcements will appear at the standard announcement locations.

We highly recommend freistilbox users to check their websites for the affected contrib modules and to update them as quickly as possible.

Previous

Index

Next