Known vulnerabilities in Alpine Linux Development Team drupal7 (Alpine package)

Known vulnerabilities in Alpine Linux Development Team drupal7 (Alpine package)

Vendor: Alpine Linux Development Team

Website: https://alpinelinux.org/

Total Security Bulletins: 18

Security bulletins (18)

Secuity bulletin	Severity	Status	Published
SB2021012417: UNIX symbolic link following in drupal7 (Alpine package)	High	Patched Exploited	24.01.2021
SB2020112708: Input validation error in drupal7 (Alpine package)	High	Patched Exploited	27.11.2020
SB2020112707: Deserialization of Untrusted Data in drupal7 (Alpine package)	High	Patched	27.11.2020
SB2020112325: Arbitrary file upload in drupal7 (Alpine package)	High	Patched Exploited	23.11.2020
SB2020091801: Cross-site scripting in drupal7 (Alpine package)	Medium	Patched	18.09.2020
SB2020061734: Server-Side Request Forgery (SSRF) in drupal7 (Alpine package)	Medium	Patched	17.06.2020
SB2020061737: Open redirect in drupal7 (Alpine package)	Low	Patched	17.06.2020
SB2020052037: Cross-site scripting in drupal7 (Alpine package)	Low	Patched	20.05.2020
SB2020052038: Cross-site scripting in drupal7 (Alpine package)	Low	Patched Exploited	20.05.2020
SB2019060530: Deserialization of untrusted data in drupal7 (Alpine package)	High	Patched	05.06.2019
SB2019050923: Dangerous file upload in drupal7 (Alpine package)	Medium	Patched	09.05.2019
SB2019050505: Prototype pollution in drupal7 (Alpine package)	Low	Patched	05.05.2019
SB2019011626: Deserialization of Untrusted Data in drupal7 (Alpine package)	Medium	Patched	16.01.2019
SB2018061147: Use-after-free error in drupal7 (Alpine package)	Medium	Patched	11.06.2018
SB2018042531: Code injection in drupal7 (Alpine package)	High	Patched Exploited	25.04.2018
SB2018032830: Code injection in drupal7 (Alpine package)	High	Patched Exploited	28.03.2018
SB2017070414: Security restrictions bypass in drupal7 (Alpine package)	Medium	Patched Exploited	04.07.2017
SB2017042807: Out-of-bounds read in gst-plugins-ugly (Alpine package)	Medium	Patched	28.04.2017