Security Vulnerabilities: SA-CORE-2018-006 - Drupal 7.x & Drupal 8.x

SA-CORE-2018-006 - Multiple Vulnerabilities in Drupal 7 & 8

Popular CMS platform Drupal have just announced that versions of Drupal 7 prior to 7.60 and Drupal 8 prior to 8.5.8 and/or 8.6.2 are affected by SA-CORE-2018-006. For more info on the vulnerabilities, please see the relevant Drupal advisory.

Update your Drupal version now

Drupal 7

Users of our Drupal 7 appliances are advised to update to version 7.60 ASAP. Options for updating Drupal 7 are covered in the Drupal 7 docs.

Drupal 8

Users of our Drupal 8 appliances still running 8.5.x are advised to update to version 8.5.8 ASAP with a view to updating to 8.6.x prior to May 2019 (8.5.x will receive security coverage until May 2019). Alternatively, update straight to 8.6.2. Options for updating Drupal 8 are covered in the Drupal 8 docs.

Updated Appliances

Updated Drupal 7 (v15.1) and Drupal 8 (v15.2) appliances which include these new versions are available now. They can be downloaded via their relevant appliance pages and/or our usual channels, such as the TurnKey Hub.

Need more assistance?

If you need any further assistance updating, please post below in the comments, or open a new thread in our support section (TurnKey forum account required). We'll do our best to help out.

Add new comment