wordpress 4.9.1+dfsg-1 source package in Debian
Changelog
wordpress (4.9.1+dfsg-1) unstable; urgency=high
* New upstream release
* Release 4.9 was never packaged due to licensing problems
* This release fixes 6 security issues Closes: #883314
- CVE-2017-17091
Use a properly generated hash for the newbloguser key instead
of a determinate substring.
- CVE-2017-17092
Remove the ability to upload JavaScript files for users who
do not have the unfiltered_html capability
- CVE-2017-17093
Add escaping to the language attributes used on html elements
- CVE-2017-17094
Ensure the attributes of enclosures are correctly escaped in
RSS and Atom feeds
* Updated to standards 4.1.1
* New linting for Javascript is disabled due to jshint.js licensing
issues
-- Craig Small <email address hidden> Sat, 09 Dec 2017 16:57:09 +1100
Upload details
- Uploaded by:
- Craig Small
- Uploaded to:
- Sid
- Original maintainer:
- Craig Small
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| wordpress_4.9.1+dfsg-1.dsc | 2.5 KiB | 9254944cc6d052b7cf3b56c6391d1674266276e8299c69dfa310767a179918da |
| wordpress_4.9.1+dfsg.orig.tar.xz | 7.2 MiB | eec4bc81caed1fc9274870fc1e766ed1f4ad265af788662e72dcd644ff7f10b1 |
| wordpress_4.9.1+dfsg-1.debian.tar.xz | 6.5 MiB | 50a00f3be6ed320a19b39b165ef9666931290e2cc064ca577bb1ccc657af5d15 |
Available diffs
- diff from 4.8.3+dfsg-1 to 4.9.1+dfsg-1 (2.3 MiB)
No changes file available.
