wordpress (2.8.3-2ubuntu1) karmic; urgency=low * Merge from debian unstable, remaining changes: - debian/apache.conf: + Changed to use /var/www instead of /srv/www for virtual webroot. - debian/setup-mysql: + Changed to use /var/www instead of /srv/www.
wordpress (2.8.3-2) unstable; urgency=medium * [2372863] debian/patches/011enforce_activaction_key.dpatch: Enforce activation key to be a string (Closes: #541102) * [cb80386] Fixed CVE-2008-6767 patch and prevent redirect loop. (Closes: #541199) wordpress (2.8.3-1) unstable; urgency=medium * [f625087] Imported Upstream version 2.8.3 (Closes: #533387, #539411) This release fixed several security issue: - Privileges unchecked and multiple information disclosures. (CVE-2009-2334, CVE-2009-2335, CVE-2009-2336) (Closes: #536724) - CVE-2009-2431, CVE-2009-2432: Obtain sensitive information (Closes: #537146) - CVE-2008-6762: Open redirect vulnerability in wp-admin/upgrade.php (Closes: #531736) * [347c164] debian/control: Added Giuseppe Iuculano in Uploaders, added Vcs and DM-Upload-Allowed control field * [92fb4ab] Bump to debhelper 7 compatibility levels * [5b8536e] Refreshing patches * [d999c0e] Added a watch file * [4163c0c] debian/rules: Do not remove the autosave tinymce plugin, there isn't anymore. * [9c4d0e5] debian/get-upstream-i18n: download .xpi files into debian/languages * [76b7c5c] Install language files * [a0bfad2] Move gettext in Build-Depends-Indep * [8b607bf] Use set -e instead of passing -e to the shell on the #! line * [6cbbf36] debian/patches/009CVE2008-6767.dpatch: Only admin can upgrade wordpress. (CVE-2008-6767) (Closes: #531736) * [d6adfbe] Disabled the the "please update" warning, thanks to Hans Spaans and Rolf Leggewie (Closes: #506685) * [15c360c] Updated to standards version 3.8.2 (No changes needed) Date: Fri, 14 Aug 2009 13:32:33 +0200 Changed-By: Michael Bienia <ge...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> Signed-By: Michael Bienia <mich...@bienia.de> https://launchpad.net/ubuntu/karmic/+source/wordpress/2.8.3-2ubuntu1
-----BEGIN PGP SIGNED MESSAGE----- Hash: RIPEMD160 Format: 1.8 Date: Fri, 14 Aug 2009 13:32:33 +0200 Source: wordpress Binary: wordpress Architecture: source Version: 2.8.3-2ubuntu1 Distribution: karmic Urgency: medium Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> Changed-By: Michael Bienia <ge...@ubuntu.com> Description: wordpress - weblog manager Closes: 506685 531736 531736 533387 536724 537146 539411 541102 541199 Changes: wordpress (2.8.3-2ubuntu1) karmic; urgency=low . * Merge from debian unstable, remaining changes: - debian/apache.conf: + Changed to use /var/www instead of /srv/www for virtual webroot. - debian/setup-mysql: + Changed to use /var/www instead of /srv/www. . wordpress (2.8.3-2) unstable; urgency=medium . * [2372863] debian/patches/011enforce_activaction_key.dpatch: Enforce activation key to be a string (Closes: #541102) * [cb80386] Fixed CVE-2008-6767 patch and prevent redirect loop. (Closes: #541199) . wordpress (2.8.3-1) unstable; urgency=medium . * [f625087] Imported Upstream version 2.8.3 (Closes: #533387, #539411) This release fixed several security issue: - Privileges unchecked and multiple information disclosures. (CVE-2009-2334, CVE-2009-2335, CVE-2009-2336) (Closes: #536724) - CVE-2009-2431, CVE-2009-2432: Obtain sensitive information (Closes: #537146) - CVE-2008-6762: Open redirect vulnerability in wp-admin/upgrade.php (Closes: #531736) * [347c164] debian/control: Added Giuseppe Iuculano in Uploaders, added Vcs and DM-Upload-Allowed control field * [92fb4ab] Bump to debhelper 7 compatibility levels * [5b8536e] Refreshing patches * [d999c0e] Added a watch file * [4163c0c] debian/rules: Do not remove the autosave tinymce plugin, there isn't anymore. * [9c4d0e5] debian/get-upstream-i18n: download .xpi files into debian/languages * [76b7c5c] Install language files * [a0bfad2] Move gettext in Build-Depends-Indep * [8b607bf] Use set -e instead of passing -e to the shell on the #! line * [6cbbf36] debian/patches/009CVE2008-6767.dpatch: Only admin can upgrade wordpress. (CVE-2008-6767) (Closes: #531736) * [d6adfbe] Disabled the the "please update" warning, thanks to Hans Spaans and Rolf Leggewie (Closes: #506685) * [15c360c] Updated to standards version 3.8.2 (No changes needed) Checksums-Sha1: 77a67661110173d8b0500b70f33ef997d7e618e5 1481 wordpress_2.8.3-2ubuntu1.dsc 669cdf11a1728321283c724a0207eb37653caf73 2078634 wordpress_2.8.3.orig.tar.gz 5a9908d28d4207461f3a77be146b5fe441918bff 3387885 wordpress_2.8.3-2ubuntu1.diff.gz Checksums-Sha256: 1c93765bddf1fa9ad460ab3458591b91e61d9dd08d6ff8f552deecae98cea4ae 1481 wordpress_2.8.3-2ubuntu1.dsc 8db730cf2e852103967a1fce49294b65168746341474b7f8b49967d2a3461c59 2078634 wordpress_2.8.3.orig.tar.gz 3c969398765f4fd04e9296833ce7547992b1b534c9eb4efb6b283e4b59c84329 3387885 wordpress_2.8.3-2ubuntu1.diff.gz Files: 6a3b0f846ae3fa704e465866e9941dc5 1481 web optional wordpress_2.8.3-2ubuntu1.dsc 0edfb5145f4b246eed72646355c45ea0 2078634 web optional wordpress_2.8.3.orig.tar.gz 4cce4b85f14c84c01979301139c60505 3387885 web optional wordpress_2.8.3-2ubuntu1.diff.gz Original-Maintainer: Andrea De Iacovo <andrea.de.iac...@gmail.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.12 (GNU/Linux) iJwEAQEDAAYFAkqFTkMACgkQo8/XfXduguqhEgP/cLdkdysunLdPmsFpwZ43uOpe m5bI++RuoqwMhY5TWtAAnf3tdhHgP+Pb2CE+hgLMWNKmCrpD/vjO+K7EUFFRJxSb JWVECfAzHBTrmama1BdKyQwSkD/aBrYuci3K0+AW73aRVcQre7tsj1xhOgfwOXpT jJX5jEETxHRWvLNYfFU= =qTD7 -----END PGP SIGNATURE-----
-- Karmic-changes mailing list Karmic-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/karmic-changes