Updated drupal packages fix security vulnerability

2014-08-1213:16:46

Gentoo Foundation

advisories.mageia.org

JSON

A denial of service issue exists in Drupal before 7.31, due to XML entity expansion in a publicly accessible XML-RPC endpoint. The drupal package has been updated to version 7.31 to fix this issue and other bugs. See the upstream advisory and release notes for more details.

OSVersionArchitecturePackageVersionFilename
Mageia3noarchdrupal< 7.31-1drupal-7.31-1.mga3
Mageia4noarchdrupal< 7.31-1drupal-7.31-1.mga4

OS	Version	Architecture	Package	Version	Filename
Mageia	3	noarch	drupal	< 7.31-1	drupal-7.31-1.mga3
Mageia	4	noarch	drupal	< 7.31-1	drupal-7.31-1.mga4

References

bugs.mageia.org/show_bug.cgi?id=13876

www.debian.org/security/2014/dsa-2999

www.drupal.org/drupal-7.30

www.drupal.org/drupal-7.30-release-notes

www.drupal.org/drupal-7.31

www.drupal.org/drupal-7.31-release-notes

www.drupal.org/SA-CORE-2014-004

JSON