Drupal addressed several issues, including a critical file processing bug
Security Affairs
DECEMBER 19, 2019
The most serious issue is related to the Archive_Tar third-party library, it has been assigned a severity rating of critical. Archive_Tar is a tool designed for handling TAR archive files in PHP. The issue affects Drupal 7x, 8.7.x x versions. The vulnerability has been reported by Jasper Mattsson from the Drupal team.
Let's personalize your content