wordpress 5.0.11+dfsg1-0+deb10u1 source package in Debian
Changelog
wordpress (5.0.11+dfsg1-0+deb10u1) buster-security; urgency=high
* Security release, fixes 8 bugs Closes: #973562
- CVE-2020-28039: Protected meta that could lead to arbitrary
file deletion.
- CVE-2020-28035: XML-RPC privilege escalation.
- CVE-2020-28036: XML-RPC privilege escalation.
- CVE-2020-28032: Hardening deserialization requests.
- CVE-2020-28037: DoS attack could lead to RCE.
- CVE-2020-28038: Stored XSS in post slugs.
- CVE-2020-28033: Disable spam embeds from disabled sites
on a multisite network.
- CVE-2020-28034: Cross-Site Scripting (XSS) via global variables.
- CVE-2020-28040: CSRF attacks that change a theme's background image.
* Remove duplicated changeset 45974 Closes: #971914
-- Craig Small <email address hidden> Tue, 03 Nov 2020 18:02:39 +1100
Upload details
- Uploaded by:
- Craig Small
- Uploaded to:
- Buster
- Original maintainer:
- Craig Small
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| wordpress_5.0.11+dfsg1-0+deb10u1.dsc | 2.4 KiB | 9ea6e6f2c2cb2317dbda94baa0e6f990f32138000a9e99c4dbee65530af46925 |
| wordpress_5.0.11+dfsg1.orig.tar.xz | 7.5 MiB | 5331feb3ba5447e4c86b6a7ebaf35ed75761856b0723da4d680d64a45386ec41 |
| wordpress_5.0.11+dfsg1-0+deb10u1.debian.tar.xz | 6.5 MiB | b205064bd8f2268b93e0d885546693cc833b3a9e9523aeab54dad62c137cf8bc |
No changes file available.
