wordpress 5.0.11+dfsg1-0+deb10u1 source package in Debian

Changelog

wordpress (5.0.11+dfsg1-0+deb10u1) buster-security; urgency=high

  * Security release, fixes 8 bugs Closes: #973562
     - CVE-2020-28039: Protected meta that could lead to arbitrary
                       file deletion.
     - CVE-2020-28035: XML-RPC privilege escalation.
     - CVE-2020-28036: XML-RPC privilege escalation.
     - CVE-2020-28032: Hardening deserialization requests.
     - CVE-2020-28037: DoS attack could lead to RCE.
     - CVE-2020-28038: Stored XSS in post slugs.
     - CVE-2020-28033: Disable spam embeds from disabled sites
                       on a multisite network.
     - CVE-2020-28034: Cross-Site Scripting (XSS) via global variables.
     - CVE-2020-28040: CSRF attacks that change a theme's background image.
  * Remove duplicated changeset 45974 Closes: #971914

 -- Craig Small <email address hidden>  Tue, 03 Nov 2020 18:02:39 +1100

Upload details

Uploaded by:
Craig Small
Uploaded to:
Buster
Original maintainer:
Craig Small
Architectures:
all
Section:
web
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
wordpress_5.0.11+dfsg1-0+deb10u1.dsc 2.4 KiB 9ea6e6f2c2cb2317dbda94baa0e6f990f32138000a9e99c4dbee65530af46925
wordpress_5.0.11+dfsg1.orig.tar.xz 7.5 MiB 5331feb3ba5447e4c86b6a7ebaf35ed75761856b0723da4d680d64a45386ec41
wordpress_5.0.11+dfsg1-0+deb10u1.debian.tar.xz 6.5 MiB b205064bd8f2268b93e0d885546693cc833b3a9e9523aeab54dad62c137cf8bc

No changes file available.

Binary packages built by this source