devportal 4.18.01 - CVE in default install

anonymous · February 23, 2018, 3:49pm

Community,

I recently provisioned 4.18.01 portal, which installs drupal 7.56 as default. This version has a CVE issue (dated 21-FEB-2018), see details in link below.

https://www.drupal.org/forum/newsletters/security-advisories-for-drupal-core/2017-06-21/drupal-core-multiple

FIX: Please run ‘drush up’, which will upgrade your portal to 7.57 to remediate the issue. Please retest your smartdocs/api features to ensure no-breakages.

anonymous · February 23, 2018, 6:29pm

I think you meant this CVE: https://www.drupal.org/sa-core-2018-001, but that’s good advice to get onto Drupal 7.57.

anonymous · February 23, 2018, 7:12pm

Essentially the same instructions, but for all OPDK customers there is documentation at https://docs.apigee.com/private-cloud/latest/upgrading-drupal-version-private-cloud-installation

Topic		Replies	Views
Upgrade Drupal version from 7.56 to 7.57 or 7.58 on premise Apigee developer-portal	1	18	March 29, 2018
Developer Portal - 17.01 Security Issue - Drupal core - SQL injection Apigee developer-portal	1	15	August 8, 2017
How do I update Drupal version of my developer Portal? Knowledge Hub apigee	0	3	March 24, 2015

devportal 4.18.01 - CVE in default install

AI Suggested topics