Re: [SECURITY] [DSA 2670-1] wordpress security update

To: debian-security@lists.debian.org
Cc: wordpress@packages.debian.org
Subject: Re: [SECURITY] [DSA 2670-1] wordpress security update
From: Dominic Hargreaves <dom@earth.li>
Date: Tue, 6 Nov 2012 16:55:17 +0000
Message-id: <[🔎] 20121106165517.GP4116@urchin.earth.li>
In-reply-to: <87ipg2e9hx.fsf@mid.deneb.enyo.de>
References: <87ipg2e9hx.fsf@mid.deneb.enyo.de>

On Fri, May 11, 2012 at 10:41:14PM +0200, Yves-Alexis Perez wrote:
> Several vulnerabilities were identified in Wordpress, a web blogging
> tool.  As the CVEs were allocated from releases announcements and
> specific fixes are usually not identified, it has been decided to
> upgrade the Wordpress package to the latest upstream version instead
> of backporting the patches.

> For the stable distribution (squeeze), those problems have been fixed in
> version 3.3.2+dfsg-1~squeeze1.

Hi all,

Thanks for doing this! Do we have any idea whether the issues alluded to
in

http://wordpress.org/news/2012/06/wordpress-3-4-1/

and

http://wordpress.org/news/2012/09/wordpress-3-4-2/

apply to 3.3 too? Are there any plans to further upgrade squeeze in
this manner?

Cheers,
Dominic.

-- 
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA 2670-1] wordpress security update
  - From: Raphael Hertzog <hertzog@debian.org>

Prev by Date: AUTO: Andrea Curti is out of office (returning 05/11/2012)
Next by Date: flashplugin-nonfree : newer Flash Player
Previous by thread: AUTO: Andrea Curti is out of office (returning 05/11/2012)
Next by thread: Re: [SECURITY] [DSA 2670-1] wordpress security update
Index(es):
- Date
- Thread