wordpress 4.7.5+dfsg-2+deb9u5 source package in Debian

Changelog

wordpress (4.7.5+dfsg-2+deb9u5) stretch-security; urgency=medium

  *  Backport security patches from wordpress 5.0.1 Closes: #916403
     - CVE-2018-20147
       Delete files through altered meta data
     - CVE-2018-20152
       Create posts of unauthorized post types
     - CVE-2018-20148
       PHP object injection through crafted meta data
     - CVE-2018-20153
       Edit other users comments, leading to XSS
     - CVE-2018-20150
       XSS in plugins through crafted URL inputs
     - CVE-2018-20151
       User activation screen visible to search engines
     - CVE-2018-20149
       Bypass MIME verification causing XSS
     - CVE-2019-8942
       Remote Code Execution (RCE) in uploaded image files

 -- Craig Small <email address hidden>  Thu, 28 Feb 2019 20:25:00 +1100

Upload details

Uploaded by:
Craig Small
Uploaded to:
Stretch
Original maintainer:
Craig Small
Architectures:
all
Section:
web
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
wordpress_4.7.5+dfsg-2+deb9u5.dsc 2.5 KiB bc46b50915f4c7d482fd1fd3ba61d3901aff4439681f5ff8a2690c3c8bfc2d1a
wordpress_4.7.5+dfsg.orig.tar.xz 6.0 MiB a21bc1f4042bbd77eb1ddef2cdcd3fb60f121835cf5d219a6e12a2d06a839b7f
wordpress_4.7.5+dfsg-2+deb9u5.debian.tar.xz 6.5 MiB 0c2eabf24870dcba9d2cffd77931f1fd8b566f3e76e5560f9bdcfec2df7970a4

No changes file available.

Binary packages built by this source