Debian Linux Security Advisory 3604-1 – A privilege escalation vulnerability has been found in the User module of the Drupal content management framework.