MGASA-2014-0329

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2014-0329.html
Import Source
https://advisories.mageia.org/MGASA-2014-0329.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2014-0329
Published
2014-08-12T09:16:46Z
Modified
2026-04-16T04:28:59.168221Z
Summary
Updated drupal packages fix security vulnerability
Details

A denial of service issue exists in Drupal before 7.31, due to XML entity expansion in a publicly accessible XML-RPC endpoint.

The drupal package has been updated to version 7.31 to fix this issue and other bugs. See the upstream advisory and release notes for more details.

References
Credits

Affected packages

Mageia:3 / drupal

Package

Name
drupal
Purl
pkg:rpm/mageia/drupal?arch=source&distro=mageia-3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.31-1.mga3

Ecosystem specific 

{
    "section": "core"
}

Database specific

source 
"https://advisories.mageia.org/MGASA-2014-0329.json"

Mageia:4 / drupal

Package

Name
drupal
Purl
pkg:rpm/mageia/drupal?arch=source&distro=mageia-4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.31-1.mga4

Ecosystem specific 

{
    "section": "core"
}

Database specific

source 
"https://advisories.mageia.org/MGASA-2014-0329.json"