Rapid7 Vulnerability & Exploit Database

FreeBSD: VID-2BAD8B5D-66FB-11E9-9815-78ACC0A3B880: drupal -- Drupal core - Moderately critical

Back to Search

FreeBSD: VID-2BAD8B5D-66FB-11E9-9815-78ACC0A3B880: drupal -- Drupal core - Moderately critical

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
04/17/2019
Created
04/26/2019
Added
04/25/2019
Modified
04/25/2019

Description

Drupal Security Team reports:

CVE-2019-10909: Escape validation messages in the PHP templating engine.

CVE-2019-10910: Check service IDs are valid.

CVE-2019-10911: Add a separator in the remember me cookie hash.

jQuery 3.4.0 includes a fix for some unintended behavior when using

jQuery.extend(true, {}, ...). If an unsanitized source object contained

an enumerable __proto__ property, it could extend the native Object.prototype.

This fix is included in jQuery 3.4.0, but patch diffs exist to patch previous

jQuery versions.

It's possible that this vulnerability is exploitable with some Drupal modules.

As a precaution, this Drupal security release backports the fix to jQuery.extend(),

without making any other changes to the jQuery version that is included in

Drupal core (3.2.1 for Drupal 8 and 1.4.4 for Drupal 7) or running on the site

via some other module such as jQuery Update.

Solution(s)

  • freebsd-upgrade-package-drupal7
  • freebsd-upgrade-package-drupal8

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;