Resolved Bugs
1120641 – CVE-2014-5019 CVE-2014-5020 CVE-2014-5021 CVE-2014-5022 drupal7: multiple vulnerabilities (SA-CORE-2014-003)
1120643 – drupal7: multiple vulnerabilities (SA-CORE-2014-003) [epel-all]
1127538 – CVE-2014-5265 CVE-2014-5266 CVE-2014-5267 drupal: denial of service issue (SA-CORE-2014-004)
1127542 – drupal7: drupal: denial of service issue (SA-CORE-2014-004) [epel-all]
1153402 – CVE-2014-3704 drupal7: SQL injection leading to code execution and privilege escalation (SA-CORE-2014-005)
1153404 – CVE-2014-3704 drupal7: SQL injection leading to code execution and privilege escalation (SA-CORE-2014-005) [epel-all]<br
Update to upstream 7.32 security release for SA-CORE-2014-005, CVE-2014-3407
Update to upstream 7.31 release for SA-CORE-2014-004
This is a bugfix release. For complete details refer to: https://www.drupal.org/drupal-7.30-release-notes
Fixes SA-CORE-2014-003. For details refer to: https://www.drupal.org/drupal-7.29-release-notes