Advisories ยป MGASA-2014-0329

Updated drupal packages fix security vulnerability

Publication date: 12 Aug 2014
Modification date: 12 Aug 2014
Type: security
Affected Mageia releases : 3 , 4

Description

A denial of service issue exists in Drupal before 7.31, due to XML entity
expansion in a publicly accessible XML-RPC endpoint.

The drupal package has been updated to version 7.31 to fix this issue and
other bugs.  See the upstream advisory and release notes for more details.
                

References

SRPMS

3/core

4/core