|Description||Drupal 4.6.x before 4.6.8 and 4.7.x before 4.7.2, when running under ...|
|Source||CVE (at NVD; oss-sec, OSVDB, EDB, Red Hat, Ubuntu, Gentoo, SuSE, more)|
|Debian/oldstable||not known to be vulnerable.|
|Debian/stable||not known to be vulnerable.|
|Debian/testing||not known to be vulnerable.|
|Debian/unstable||not known to be vulnerable.|
The information above is based on the following data on fixed versions.
|Package||Type||Release||Fixed Version||Urgency||Origin||Debian Bugs|
Although not in the changelog, sesse@ (responsible for 4.5.8-1.1) says he pulled in the entire patch for DRUPAL-SA-2006-007, which fixes CVE-2006-2831.
Home - Testing Security Team - Debian Security - Source (SVN)