wordpress 3.5.2+dfsg-1 source package in Ubuntu
Changelog
wordpress (3.5.2+dfsg-1) unstable; urgency=low * New upstream release with many security fixes. Closes: #713947 * Server-Side Request Forgery (SSRF) via the HTTP API. CVE-2013-2199. * Privilege Escalation: Contributors can publish posts, and users can reassign authorship. CVE-2013-2200. * Cross-Site Scripting (XSS) in SWFUpload. CVE-2013-2205. * Denial of Service (DoS) via Post Password Cookies. CVE-2013-2173. * Content Spoofing via Flash Applet in TinyMCE Media Plugin. CVE-2013-2204. * Cross-Site Scripting (XSS) when Uploading Media. CVE-2013-2201. * Full Path Disclosure (FPD) during File Upload. CVE-2013-2203. * Additional security hardening includes: * Cross-Site Scripting (XSS) (Low Severity) when Editing Media. CVE-2013-2201. * Cross-Site Scripting (XSS) (Low Severity) when Installing/Updating Plugins/Themes. CVE-2013-2201. * XML External Entity Injection (XXE) via oEmbed. CVE-2013-2202. * Update the Vcs-Git and Vcs-Browser URLs. * Update Standards-Version to 3.9.4. -- Raphaƫl Hertzog <email address hidden> Tue, 25 Jun 2013 15:52:07 +0200
Upload details
- Uploaded by:
- Giuseppe Iuculano
- Uploaded to:
- Sid
- Original maintainer:
- Giuseppe Iuculano
- Architectures:
- all
- Section:
- web
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
wordpress_3.5.2+dfsg-1.dsc | 2.3 KiB | 04bc9447d57be1dd7ddd5585120dd254ab631663b5f18a570a35cc8262282106 |
wordpress_3.5.2+dfsg.orig.tar.xz | 4.1 MiB | c4403b912ec5154aa2ff67e2b7afa5a4b67dca055e3421cc000212b73e6f1eb4 |
wordpress_3.5.2+dfsg-1.debian.tar.xz | 5.0 MiB | 9e21d3dc6c5dee8bd8e7fe08cba440e34d80d06e1b66c6586ab68d8d680bd4af |
Available diffs
- diff from 3.5.1+dfsg-2 to 3.5.2+dfsg-1 (193.3 KiB)
No changes file available.
Binary packages built by this source
- wordpress: No summary available for wordpress in ubuntu saucy.
No description available for wordpress in ubuntu saucy.
- wordpress-l10n: No summary available for wordpress-l10n in ubuntu saucy.
No description available for wordpress-l10n in ubuntu saucy.