Apply the changes from D6LTS SA-CORE-2019-002.

[mparker17]

This is a security update.

These changes are from https://cgit.drupalcode.org/d6lts/commit/?id=b3909cd89385368ef1528ad3b972fa21cdc21e82

This is a security update.

See https://www.drupal.org/sa-core-2019-001 , and https://www.drupal.org/sa-core-2019-002 for more information.

Please note that I cannot merge automatically: someone else please review and merge.

Generated with:

$ git clone --recursive $my_fork_clone_url
$ git clone --recursive https://git.drupal.org/project/d6lts.git
$ cd 6 # i.e.: to the clone of my fork
$ git remote add upstream https://github.com/pressflow/6.git
$ git fetch --all -t -p
$ git checkout master
$ git merge upstream/master --ff-only
$ git checkout -b SA-CORE-2019-002
$ git apply --index ../d6lts/common/core/SA-CORE-2019-002.patch
$ git commit -m "Apply the changes from D6LTS SA-CORE-2019-002."
$ git push --set-upstream origin SA-CORE-2019-002

... at which point the Github UI gave me the option to create this pull request for my SA-CORE-2019-002 branch at https://github.com/pressflow/6

@dsnopek please review and merge

[mparker17]

ping @pwolanin ?

[pwolanin]

Should we actually apply the D6LTS diff here and get the version change also?

[Muppetteer]

Bump. I've used this patch and manually updated the VERSION constant to 6.49 in system.module, but it would be good to have an official patch. It looks like D6LTS did not update CHANGELOG.TXT.

[pwolanin]

The last release I made here was 6.47.127

Let me see about making a new net patch from 6.47

[pwolanin]

New PR: https://github.com/pressflow/6/pull/128