wordpress (2.8.3-2ubuntu1) karmic; urgency=low
* Merge from debian unstable, remaining changes:
- debian/apache.conf:
+ Changed to use /var/www instead of /srv/www for virtual webroot.
- debian/setup-mysql:
+ Changed to use /var/www instead of /srv/www.
wordpress (2.8.3-2) unstable; urgency=medium
* [2372863] debian/patches/011enforce_activaction_key.dpatch: Enforce
activation key to be a string (Closes: #541102)
* [cb80386] Fixed CVE-2008-6767 patch and prevent redirect loop.
(Closes: #541199)
wordpress (2.8.3-1) unstable; urgency=medium
* [f625087] Imported Upstream version 2.8.3 (Closes: #533387, #539411)
This release fixed several security issue:
- Privileges unchecked and multiple information disclosures.
(CVE-2009-2334, CVE-2009-2335, CVE-2009-2336) (Closes: #536724)
- CVE-2009-2431, CVE-2009-2432: Obtain sensitive information
(Closes: #537146)
- CVE-2008-6762: Open redirect vulnerability in wp-admin/upgrade.php
(Closes: #531736)
* [347c164] debian/control: Added Giuseppe Iuculano in Uploaders,
added Vcs and DM-Upload-Allowed control field
* [92fb4ab] Bump to debhelper 7 compatibility levels
* [5b8536e] Refreshing patches
* [d999c0e] Added a watch file
* [4163c0c] debian/rules: Do not remove the autosave tinymce plugin, there
isn't anymore.
* [9c4d0e5] debian/get-upstream-i18n: download .xpi files into
debian/languages
* [76b7c5c] Install language files
* [a0bfad2] Move gettext in Build-Depends-Indep
* [8b607bf] Use set -e instead of passing -e to the shell on the #!
line
* [6cbbf36] debian/patches/009CVE2008-6767.dpatch: Only admin can
upgrade wordpress. (CVE-2008-6767) (Closes: #531736)
* [d6adfbe] Disabled the the "please update" warning, thanks to Hans
Spaans and Rolf Leggewie (Closes: #506685)
* [15c360c] Updated to standards version 3.8.2 (No changes needed)
Date: Fri, 14 Aug 2009 13:32:33 +0200
Changed-By: Michael Bienia <ge...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
Signed-By: Michael Bienia <mich...@bienia.de>
https://launchpad.net/ubuntu/karmic/+source/wordpress/2.8.3-2ubuntu1
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Format: 1.8
Date: Fri, 14 Aug 2009 13:32:33 +0200
Source: wordpress
Binary: wordpress
Architecture: source
Version: 2.8.3-2ubuntu1
Distribution: karmic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
Changed-By: Michael Bienia <ge...@ubuntu.com>
Description:
wordpress - weblog manager
Closes: 506685 531736 531736 533387 536724 537146 539411 541102 541199
Changes:
wordpress (2.8.3-2ubuntu1) karmic; urgency=low
.
* Merge from debian unstable, remaining changes:
- debian/apache.conf:
+ Changed to use /var/www instead of /srv/www for virtual webroot.
- debian/setup-mysql:
+ Changed to use /var/www instead of /srv/www.
.
wordpress (2.8.3-2) unstable; urgency=medium
.
* [2372863] debian/patches/011enforce_activaction_key.dpatch: Enforce
activation key to be a string (Closes: #541102)
* [cb80386] Fixed CVE-2008-6767 patch and prevent redirect loop.
(Closes: #541199)
.
wordpress (2.8.3-1) unstable; urgency=medium
.
* [f625087] Imported Upstream version 2.8.3 (Closes: #533387, #539411)
This release fixed several security issue:
- Privileges unchecked and multiple information disclosures.
(CVE-2009-2334, CVE-2009-2335, CVE-2009-2336) (Closes: #536724)
- CVE-2009-2431, CVE-2009-2432: Obtain sensitive information
(Closes: #537146)
- CVE-2008-6762: Open redirect vulnerability in wp-admin/upgrade.php
(Closes: #531736)
* [347c164] debian/control: Added Giuseppe Iuculano in Uploaders,
added Vcs and DM-Upload-Allowed control field
* [92fb4ab] Bump to debhelper 7 compatibility levels
* [5b8536e] Refreshing patches
* [d999c0e] Added a watch file
* [4163c0c] debian/rules: Do not remove the autosave tinymce plugin, there
isn't anymore.
* [9c4d0e5] debian/get-upstream-i18n: download .xpi files into
debian/languages
* [76b7c5c] Install language files
* [a0bfad2] Move gettext in Build-Depends-Indep
* [8b607bf] Use set -e instead of passing -e to the shell on the #!
line
* [6cbbf36] debian/patches/009CVE2008-6767.dpatch: Only admin can
upgrade wordpress. (CVE-2008-6767) (Closes: #531736)
* [d6adfbe] Disabled the the "please update" warning, thanks to Hans
Spaans and Rolf Leggewie (Closes: #506685)
* [15c360c] Updated to standards version 3.8.2 (No changes needed)
Checksums-Sha1:
77a67661110173d8b0500b70f33ef997d7e618e5 1481 wordpress_2.8.3-2ubuntu1.dsc
669cdf11a1728321283c724a0207eb37653caf73 2078634 wordpress_2.8.3.orig.tar.gz
5a9908d28d4207461f3a77be146b5fe441918bff 3387885
wordpress_2.8.3-2ubuntu1.diff.gz
Checksums-Sha256:
1c93765bddf1fa9ad460ab3458591b91e61d9dd08d6ff8f552deecae98cea4ae 1481
wordpress_2.8.3-2ubuntu1.dsc
8db730cf2e852103967a1fce49294b65168746341474b7f8b49967d2a3461c59 2078634
wordpress_2.8.3.orig.tar.gz
3c969398765f4fd04e9296833ce7547992b1b534c9eb4efb6b283e4b59c84329 3387885
wordpress_2.8.3-2ubuntu1.diff.gz
Files:
6a3b0f846ae3fa704e465866e9941dc5 1481 web optional wordpress_2.8.3-2ubuntu1.dsc
0edfb5145f4b246eed72646355c45ea0 2078634 web optional
wordpress_2.8.3.orig.tar.gz
4cce4b85f14c84c01979301139c60505 3387885 web optional
wordpress_2.8.3-2ubuntu1.diff.gz
Original-Maintainer: Andrea De Iacovo <andrea.de.iac...@gmail.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)
iJwEAQEDAAYFAkqFTkMACgkQo8/XfXduguqhEgP/cLdkdysunLdPmsFpwZ43uOpe
m5bI++RuoqwMhY5TWtAAnf3tdhHgP+Pb2CE+hgLMWNKmCrpD/vjO+K7EUFFRJxSb
JWVECfAzHBTrmama1BdKyQwSkD/aBrYuci3K0+AW73aRVcQre7tsj1xhOgfwOXpT
jJX5jEETxHRWvLNYfFU=
=qTD7
-----END PGP SIGNATURE-----
--
Karmic-changes mailing list
Karmic-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/karmic-changes
