Several Vulnerabilities Patched in Drupal 7, 8
Drupal developers have released updates for versions 7 and 8 to address security flaws that can lead to information disclosure, cache poisoning, redirection to third-party sites and a denial-of-service (DoS) condition.
Read more: Several Vulnerabilities Patched in Drupal 7, 8
Story added 17. November 2016, content source with full text you can find at link above.