Updated drupal packages fix security vulnerability
Publication date: 12 Aug 2014Modification date: 12 Aug 2014
Type: security
Affected Mageia releases : 3 , 4
Description
A denial of service issue exists in Drupal before 7.31, due to XML entity expansion in a publicly accessible XML-RPC endpoint. The drupal package has been updated to version 7.31 to fix this issue and other bugs. See the upstream advisory and release notes for more details.
References
SRPMS
3/core
- drupal-7.31-1.mga3
4/core
- drupal-7.31-1.mga4