Blog

Drupal 7 and Drupal 8 End of Life (EOL)

by Elliot Christenson on June 2, 2021 - 8:41pm

What Does Drupal “End of Life” (EOL) Even Mean?

In the Drupal world, when a version reaches EOL status, the community comes to a consensus to not issue new free updates or offer free support for that version. The intention is to allow community resources to get focused on new versions. This means new features aren't added, modern standards don't get implemented, and bugs don't get fixed for the older versions. Drupal 6 is currently in this EOL status. Thousands of these D6 sites require Long Term Support from a vendor like myDropWizard or extreme vigilance by their owners.

Drupal 6 core security update for SA-CORE-2021-002

by David Snopek on April 21, 2021 - 12:25pm

As you may know, Drupal 6 has reached End-of-Life (EOL) which means the Drupal Security Team is no longer doing Security Advisories or working on security patches for Drupal 6 core or contrib modules - but the Drupal 6 LTS vendors are and we're one of them!

Today, there is a Critical security release for Drupal core to fix a Cross-Site Scripting (XSS) vulnerability. You can learn more in the security advisory:

Drupal core - Critical - Cross-Site Scripting - SA-CORE-2021-002

Here you can download the Drupal 6 patch to fix, or a full release ZIP or TAR.GZ.

If you have a Drupal 6 site, we recommend you update immediately! We have already deployed the patch for all of our Drupal 6 Long-Term Support clients. :-)

FYI, there were other Drupal core security advisories made today, but those don't affect Drupal 6.

If you'd like all your Drupal 6 modules to receive security updates and have the fixes deployed the same day they're released, please check out our D6LTS plans.

Note: if you use the myDropWizard module (totally free!), you'll be alerted to these and any future security updates, and will be able to use drush to install them (even though they won't necessarily have a release on Drupal.org).

When Should I Sign-Up for Drupal 7 Security Support?

by Elliot Christenson on March 31, 2021 - 9:22pm

We get asked a bunch of questions pretty much every day now. "Drupal 7 EOL is coming at the end of 2022. Are you going to support it? For how long? What do I need to do?"

You Don't Have to Wait Until November 2022 to Fix Your Drupal 7 Site!

by Elliot Christenson on March 3, 2021 - 10:56pm

As we get closer to the November 2022 "End-Of-Life" date for Drupal 7, I've noticed a lot of the same questions coming up. So, I'm going to try to make this blog post a bit of an "FAQ" that you can refer to with questions - and if any are missing, please add a comment at the bottom of the post. To start with, I'm going to break it into two sections: working vs. not-working sites.

Drupal 6 Long-Term Support Extended to 2023 - and What About Drupal 7?

by Elliot Christenson on February 3, 2021 - 11:55pm

One more year? Sure. Why not!?

When we originally announced that we'd be providing Drupal 6 Long-Term Support, we committed to supporting our customers until at least February 2017.

We've made pretty regular announcements in the past extending things far beyond that original end-date.

Today, we're announcing that we'll be extending our Drupal 6 Long-Term Support (D6LTS) until at least February 2023!

Read more about Drupal 6 Long-Term Support Extended to 2023 - and What About Drupal 7?

2 comments

Add new comment

2021: The Year of a Safe and Secure Drupal 7

by Elliot Christenson on January 6, 2021 - 9:48pm

You deserve a simple and easy-going 2021.
As you may already be aware, the Drupal Community is supporting Drupal 7 through November of 2022! This means your organization can remain free of most of the worst issues that could hit your website - as long as you do all of the updates. If you would rather not stress about such things: read on!

Read more about 2021: The Year of a Safe and Secure Drupal 7

Add new comment

Thanksgiving Eve Emergency Security Update? You're Just Chillin'

by Elliot Christenson on December 2, 2020 - 11:00pm

Last Wednesday, November 25th, 2020 was a security update that impacted Drupal 8, Drupal 7, and even Drupal 6 "LTS". Hundreds of thousands of website operators need to immediately update their websites! A huge percentage of them are not "web developers". Many don't even know they need the update!
Drupal isn't known for its ease of use for site owners. It's come a long way, but it remains difficult for most. That's expected and sometimes even exciting for Drupal developers.
What about the (non-developer) site owner? We don't believe your site should be left vulnerable. We believe you should be able to "just chill" rather than stress about your Drupal site security!
Read on for a peek behind the curtain to see what the Wizards do so you don't have to.

Read more about Thanksgiving Eve Emergency Security Update? You're Just Chillin'

Add new comment

Drupal 6 core security update for SA-CORE-2020-012

by David Snopek on November 18, 2020 - 12:13pm

As you may know, Drupal 6 has reached End-of-Life (EOL) which means the Drupal Security Team is no longer doing Security Advisories or working on security patches for Drupal 6 core or contrib modules - but the Drupal 6 LTS vendors are and we're one of them!
Today, there is a Critical security release for Drupal core to fix a Remote Code Execution (RCE) vulnerability. You can learn more in the security advisory:
Drupal core - Critical - Remote code execution - SA-CORE-2020-012
Here you can download the Drupal 6 patch to fix, or a full release ZIP or TAR.GZ.
If you have a Drupal 6 site, we recommend you update immediately! We have already deployed the patch for all of our Drupal 6 Long-Term Support clients. :-)
FYI, there were other Drupal core security advisories made today, but those don't affect Drupal 6.
If you'd like all your Drupal 6 modules to receive security updates and have the fixes deployed the same day they're released, please check out our D6LTS plans.
Note: if you use the myDropWizard module (totally free!), you'll be alerted to these and any future security updates, and will be able to use drush to install them (even though they won't necessarily have a release on Drupal.org).

Read more about Drupal 6 core security update for SA-CORE-2020-012

Add new comment

PHP 7.4 for Drupal 6 Long-Term Support

by Elliot Christenson on November 5, 2020 - 12:33am

This is a bit of an update to our update to PHP 7 that we did awhile back.
Last week we contacted all of our clients to announce our PHP 7.4 upgrade plans.
Much like the update to accomodate PHP 7, this update will necessitate some changes for some of our Drupal 6 clients.
Thankfully the scope of changes seems to be a bit smaller so far.
The important thing to note is that we are continuing to make changes to keep Drupal 6 and important contrib modules current with modern, supported (and secure) versions of PHP!
Read on to find out more!

Read more about PHP 7.4 for Drupal 6 Long-Term Support

Add new comment

(Updated for 2020) So, When Do I REALLY Need to Upgrade From Drupal 7 (or 8)?

by Elliot Christenson on September 30, 2020 - 9:04pm

Two years ago, we had a blog post with the same title: So, When Do I REALLY Need to Upgrade From Drupal 7? A lot has changed in the past two years. In the world, of course, but also in Drupal.
Drupal 7 was released on January 5, 2011. It's nearly 10 years old and going strong!
Drupal 8 was released on November 19, 2015 which itself is nearly 5 years old!
Where do our legacy and most used Drupals stand? Read on...

Read more about (Updated for 2020) So, When Do I REALLY Need to Upgrade From Drupal 7 (or 8)?

1 comment

Add new comment

1 of 20

next ›

Popular topics

Drupal Planet (135)

Drupal 6 LTS (86)

Drupal 6 security update (55)

Drupal 6 Security Update (37)

Drupal Security (36)

Drupal 6 (24)

Drupal 8 (23)

About myDropWizard (21)

Drupal 7 (19)

Uncategorized (13)

We're a Top 40 Drupal Blog!

You are here

What Does Drupal “End of Life” (EOL) Even Mean?

Popular topics

We're a Top 40 Drupal Blog!