wordpress 4.7.5+dfsg-2+deb9u5 source package in Debian
Changelog
wordpress (4.7.5+dfsg-2+deb9u5) stretch-security; urgency=medium * Backport security patches from wordpress 5.0.1 Closes: #916403 - CVE-2018-20147 Delete files through altered meta data - CVE-2018-20152 Create posts of unauthorized post types - CVE-2018-20148 PHP object injection through crafted meta data - CVE-2018-20153 Edit other users comments, leading to XSS - CVE-2018-20150 XSS in plugins through crafted URL inputs - CVE-2018-20151 User activation screen visible to search engines - CVE-2018-20149 Bypass MIME verification causing XSS - CVE-2019-8942 Remote Code Execution (RCE) in uploaded image files -- Craig Small <email address hidden> Thu, 28 Feb 2019 20:25:00 +1100
Upload details
- Uploaded by:
- Craig Small
- Uploaded to:
- Stretch
- Original maintainer:
- Craig Small
- Architectures:
- all
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
wordpress_4.7.5+dfsg-2+deb9u5.dsc | 2.5 KiB | bc46b50915f4c7d482fd1fd3ba61d3901aff4439681f5ff8a2690c3c8bfc2d1a |
wordpress_4.7.5+dfsg.orig.tar.xz | 6.0 MiB | a21bc1f4042bbd77eb1ddef2cdcd3fb60f121835cf5d219a6e12a2d06a839b7f |
wordpress_4.7.5+dfsg-2+deb9u5.debian.tar.xz | 6.5 MiB | 0c2eabf24870dcba9d2cffd77931f1fd8b566f3e76e5560f9bdcfec2df7970a4 |
No changes file available.