Im just going to state this and let yall figure it out. Security Exploits / CVE?
Look no matter what OS, or SOFTWARE you run on your electronics hardware. At the end of the day, Electronics has a fatal flaw. And cannot be secured. That flaw has been known about since Electronics was invented / discovered. And any notion of " Security " of electronics, or software operating on electronics. Is a delusional thought. -StealthMode On Sun, Mar 10, 2024 at 3:19 PM Markus Koschany <[email protected]> wrote: > ------------------------------------------------------------------------- > Debian LTS Advisory DLA-3756-1 [email protected] > https://www.debian.org/lts/security/ Markus Koschany > March 10, 2024 https://wiki.debian.org/LTS > ------------------------------------------------------------------------- > > Package : wordpress > Version : 5.0.21+dfsg1-0+deb10u1 > CVE ID : not yet available > > Two security vulnerabilities have been discovered in Wordpress, a > popular content management framework, a PHP File Upload bypass via the > plugin > installer and a possible remote code execution vulnerability which > requires > an attacker to control all the properties of a deserialized object. No CVE > have > been assigned for these problems yet. > > > https://wordpress.org/news/2024/01/wordpress-6-4-3-maintenance-and-security-release/ > > For Debian 10 buster, this problem has been fixed in version > 5.0.21+dfsg1-0+deb10u1. > > We recommend that you upgrade your wordpress packages. > > For the detailed security status of wordpress please refer to > its security tracker page at: > https://security-tracker.debian.org/tracker/wordpress > > Further information about Debian LTS security advisories, how to apply > these updates to your system and frequently asked questions can be > found at: https://wiki.debian.org/LTS >
