1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 4250-1] wordpress security update

    From Sebastien Delafond@1:229/2 to All on Wed Jul 18 09:50:01 2018
    From: [email protected]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4250-1 [email protected] https://www.debian.org/security/ Sebastien Delafond
    July 18, 2018 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : wordpress
    CVE ID : CVE-2018-12895
    Debian Bug : 902876

    A vulnerability was discovered in Wordpress, a web blogging tool. It
    allowed remote attackers with specific roles to execute arbitrary
    code.

    For the stable distribution (stretch), this problem has been fixed in
    version 4.7.5+dfsg-2+deb9u4.

    We recommend that you upgrade your wordpress packages.

    For the detailed security status of wordpress please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/wordpress

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQEzBAEBCgAdFiEEAqSkbVtrXP4xJMh3EL6Jg/PVnWQFAltO7bgACgkQEL6Jg/PV nWSRxgf/caN7/Kiv+hMHOywvw6UMxoozbDpZxzX0owDaxLVObL22Fst6MEnwNPtS tCV5J3G69a7IBRbOOB+nFt/rFuDS4cmnfnXJbV7asc7uYIfcOkaUpLlXoUlbMnG3 BLz4vmeP3cjKMjKXXzZyvb85V0r/ueSkuzKumJ5jLBevBWKItVQ2uWNhTen+TLDf eUL11E8rcLWcVC/Fib8YpuikOBX41Eq4wGoutjtXZjPmwql4zMfWsWeG/CQLQutI 9SuyINXqfFhGlgyD2IhhFJ99ShxSTE+7P/G0TBFMGmPSNFwbfb3mkRZqCqX5sNYG j+6kEMLajfISA1yHh4qJQ4bTYBsSBw==
    =K+mD
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)