Accepted procps 1:2.0.7-8.woody1 (i386 source)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Mon, 25 Aug 2003 21:41:03 +1000 Source: procps Binary: procps libproc-dev Architecture: source i386 Version: 1:2.0.7-8.woody1 Distribution: stable Urgency: low Maintainer: Craig Small <[EMAIL PROTECTED]> Changed-By: Craig Small <[EMAIL PROTECTED]> Description: libproc-dev - library for accessing process information from /proc procps - The /proc file system utilities. Closes: 203982 205288 Changes: procps (1:2.0.7-8.woody1) stable; urgency=low . * Fixes ps crash when system.map is exact multiple of 1024 Exact same patch as for 2.0.7-10 By happy coincidence Debian ships some kernels that have a System.map file that is modulo 1024. Thankyou Colin for the patch (again) Closes: #205288, #203982 Files: a6e841d61a77b3b40c7e36a4327daeca 602 base required procps_2.0.7-8.woody1.dsc f3447953d6f1f043f3129ece7d7cdfca 25825 base required procps_2.0.7-8.woody1.diff.gz 56a1f1913b893ee5dd1dd5b495189f6a 145114 base required procps_2.0.7-8.woody1_i386.deb 954c66823894463c768317a5333b99a4 46734 devel optional libproc-dev_2.0.7-8.woody1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD4DBQE/Sf8Cx2zlrBLK36URAuELAJ9DT5Pq7tZSfvTAJDBTfgIEcbc7egCYy5I7 wjawt5It977ewYhUd64f7w== =ikPK -END PGP SIGNATURE- Accepted: libproc-dev_2.0.7-8.woody1_i386.deb to pool/main/p/procps/libproc-dev_2.0.7-8.woody1_i386.deb procps_2.0.7-8.woody1.diff.gz to pool/main/p/procps/procps_2.0.7-8.woody1.diff.gz procps_2.0.7-8.woody1.dsc to pool/main/p/procps/procps_2.0.7-8.woody1.dsc procps_2.0.7-8.woody1_i386.deb to pool/main/p/procps/procps_2.0.7-8.woody1_i386.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Accepted procps 1:2.0.7-8.woody1 (i386 source)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Mon, 25 Aug 2003 21:41:03 +1000 Source: procps Binary: procps libproc-dev Architecture: source i386 Version: 1:2.0.7-8.woody1 Distribution: stable Urgency: low Maintainer: Craig Small <[EMAIL PROTECTED]> Changed-By: Craig Small <[EMAIL PROTECTED]> Description: libproc-dev - library for accessing process information from /proc procps - The /proc file system utilities. Closes: 203982 205288 Changes: procps (1:2.0.7-8.woody1) stable; urgency=low . * Fixes ps crash when system.map is exact multiple of 1024 Exact same patch as for 2.0.7-10 By happy coincidence Debian ships some kernels that have a System.map file that is modulo 1024. Thankyou Colin for the patch (again) Closes: #205288, #203982 Files: a6e841d61a77b3b40c7e36a4327daeca 602 base required procps_2.0.7-8.woody1.dsc f3447953d6f1f043f3129ece7d7cdfca 25825 base required procps_2.0.7-8.woody1.diff.gz 56a1f1913b893ee5dd1dd5b495189f6a 145114 base required procps_2.0.7-8.woody1_i386.deb 954c66823894463c768317a5333b99a4 46734 devel optional libproc-dev_2.0.7-8.woody1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD4DBQE/Sf8Cx2zlrBLK36URAuELAJ9DT5Pq7tZSfvTAJDBTfgIEcbc7egCYy5I7 wjawt5It977ewYhUd64f7w== =ikPK -END PGP SIGNATURE- Accepted: libproc-dev_2.0.7-8.woody1_i386.deb to pool/main/p/procps/libproc-dev_2.0.7-8.woody1_i386.deb procps_2.0.7-8.woody1.diff.gz to pool/main/p/procps/procps_2.0.7-8.woody1.diff.gz procps_2.0.7-8.woody1.dsc to pool/main/p/procps/procps_2.0.7-8.woody1.dsc procps_2.0.7-8.woody1_i386.deb to pool/main/p/procps/procps_2.0.7-8.woody1_i386.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Accepted jffnms 0.8.3dfsg.1-2.1etch1 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Mon, 11 Jun 2007 09:16:41 +1000 Source: jffnms Binary: jffnms Architecture: source all Version: 0.8.3dfsg.1-2.1etch1 Distribution: stable-security Urgency: high Maintainer: Craig Small <[EMAIL PROTECTED]> Changed-By: Craig Small <[EMAIL PROTECTED]> Description: jffnms - web-based Network Management System (NMS) for IP networks Changes: jffnms (0.8.3dfsg.1-2.1etch1) stable-security; urgency=high . * Security Bug Fix * Removes Javascript and SQL injectection bug which allows authentication to be bypassed [CVE-2007-3204, CVE-2007-3190, CVE-2007-3189] * Information disclosure files removed * Backdoor authentication files removed Files: 7a46a6cdefe38535235aa87dd8e6279c 609 web extra jffnms_0.8.3dfsg.1-2.1etch1.dsc 6be7ef656cf0eea1d133a0bc71a4bba2 547656 web extra jffnms_0.8.3dfsg.1.orig.tar.gz cf3fd349e3012b93a4d20711730b26f6 76283 web extra jffnms_0.8.3dfsg.1-2.1etch1.diff.gz 94ec8551e3eaa20ae277a5aab47043ee 550292 web extra jffnms_0.8.3dfsg.1-2.1etch1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGtRCZwM/Gs81MDZ0RAiMAAKC/3BaQHfXeNV05lvLhSaXDDjifOgCfSrJj HkeXh7SSkq5xOsaCuq55Qkc= =pLz0 -END PGP SIGNATURE- Accepted: jffnms_0.8.3dfsg.1-2.1etch1.diff.gz to pool/main/j/jffnms/jffnms_0.8.3dfsg.1-2.1etch1.diff.gz jffnms_0.8.3dfsg.1-2.1etch1.dsc to pool/main/j/jffnms/jffnms_0.8.3dfsg.1-2.1etch1.dsc jffnms_0.8.3dfsg.1-2.1etch1_all.deb to pool/main/j/jffnms/jffnms_0.8.3dfsg.1-2.1etch1_all.deb -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Installed lprng 3.6.12-7 (source i386)
Installed: lprng_3.6.12-7_i386.deb to dists/proposed-updates/lprng_3.6.12-7_i386.deb lprng_3.6.12-7.diff.gz to dists/proposed-updates/lprng_3.6.12-7.diff.gz lprng_3.6.12-7.dsc to dists/proposed-updates/lprng_3.6.12-7.dsc -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.6 Date: Sun, 15 Oct 2000 15:42:02 -0500 Source: lprng Binary: lprng Architecture: source i386 Version: 3.6.12-7 Distribution: stable Urgency: high Maintainer: Craig Small <[EMAIL PROTECTED]> Description: lprng - lpr/lpd printer spooling system Changes: lprng (3.6.12-7) stable; urgency=high . * SECURITY FIXES!! * syslog() overflow bug fixed * getttext NLSPATH security bug fixed. * spool_file_perms security bug fixed. * Added setuid Linux bug work-around. Files: 0e53a353291a4dca2fb78db67905fb58 563 net optional lprng_3.6.12-7.dsc 64323558930d4bacf8bba1b5e16fc8ac 27866 net optional lprng_3.6.12-7.diff.gz fd0dcae2de048dac0fdc50e96adde6a8 897334 net optional lprng_3.6.12-7_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.2 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE56jNix2zlrBLK36URAkNZAJwLk/kneKUmz4gJubKHmn/biSDaTwCgjpTN ivFR8pvEbFDdGV3ndkGNIUU= =BjGr -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Installed lprng 3.6.12-8 (source i386)
Installed: lprng_3.6.12-8_i386.deb to dists/proposed-updates/lprng_3.6.12-8_i386.deb replacing lprng_3.6.12-7_i386.deb lprng_3.6.12-8.diff.gz to dists/proposed-updates/lprng_3.6.12-8.diff.gz replacing lprng_3.6.12-7.diff.gz lprng_3.6.12-8.dsc to dists/proposed-updates/lprng_3.6.12-8.dsc replacing lprng_3.6.12-7.dsc -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.6 Date: Tue, 17 Oct 2000 16:35:43 -0500 Source: lprng Binary: lprng Architecture: source i386 Version: 3.6.12-8 Distribution: stable Urgency: high Maintainer: Craig Small <[EMAIL PROTECTED]> Description: lprng - lpr/lpd printer spooling system Closes: 74942 74946 Changes: lprng (3.6.12-8) stable; urgency=high . * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 Files: b020ac34826f9eea2d3959e3717e6bb4 563 net optional lprng_3.6.12-8.dsc d2eb9b6c536de390e8deae1572ef 29937 net optional lprng_3.6.12-8.diff.gz cf64daefeb139fe9e526c25e010f7088 897418 net optional lprng_3.6.12-8_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.2 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE57NRix2zlrBLK36URAkOsAJwOu741m+jbViOn7ZSFjxPPzpc8HQCfYf6a Yz/vDBy3VKRxW905GOL6UkA= =lwl9 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Installed lprng 3.6.12-8 (source i386)
Installed: lprng_3.6.12-8_i386.deb to dists/potato/main/binary-i386/net/lprng_3.6.12-8.deb replacing lprng_3.6.12-6.deb lprng_3.6.12-8.diff.gz to dists/potato/main/source/net/lprng_3.6.12-8.diff.gz replacing lprng_3.6.12-6.diff.gz lprng_3.6.12-8.dsc to dists/potato/main/source/net/lprng_3.6.12-8.dsc replacing lprng_3.6.12-6.dsc -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.6 Date: Tue, 17 Oct 2000 16:35:43 -0500 Source: lprng Binary: lprng Architecture: source i386 Version: 3.6.12-8 Distribution: stable Urgency: high Maintainer: Craig Small <[EMAIL PROTECTED]> Description: lprng - lpr/lpd printer spooling system Closes: 74942 74946 Changes: lprng (3.6.12-8) stable; urgency=high . * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 Files: b020ac34826f9eea2d3959e3717e6bb4 563 net optional lprng_3.6.12-8.dsc d2eb9b6c536de390e8deae1572ef 29937 net optional lprng_3.6.12-8.diff.gz cf64daefeb139fe9e526c25e010f7088 897418 net optional lprng_3.6.12-8_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.2 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE57NRix2zlrBLK36URAkOsAJwOu741m+jbViOn7ZSFjxPPzpc8HQCfYf6a Yz/vDBy3VKRxW905GOL6UkA= =lwl9 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Accepted wordpress 4.7.5+dfsg-2+deb9u3 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 16 Apr 2018 21:05:38 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentysixteen wordpress-theme-twentyfifteen wordpress-theme-twentyseventeen Architecture: source all Version: 4.7.5+dfsg-2+deb9u3 Distribution: stretch-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyseventeen - weblog manager - twentyseventeen theme files wordpress-theme-twentysixteen - weblog manager - twentysixteen theme files Closes: 895034 Changes: wordpress (4.7.5+dfsg-2+deb9u3) stretch-security; urgency=high . * Backport security patches from 4.9.5 Closes: #895034 - CVE-2018-10101 Don't treat localhost as same host by default. - CVE-2018-10100 Use safe redirects when redirecting login page if SSL is forced - CVE-2018-10102 Make sure version string is correctly escaped for use in generator tags Checksums-Sha1: 6b5695a510b1564d90b4dc69f18be936b41c2df6 2567 wordpress_4.7.5+dfsg-2+deb9u3.dsc ea340714d6db18e575f6b256861b713249f23af5 6790072 wordpress_4.7.5+dfsg-2+deb9u3.debian.tar.xz 0adfb9adc4bff7c08afe2674073297e7c5de 4383450 wordpress-l10n_4.7.5+dfsg-2+deb9u3_all.deb 3eba3041d752c3607b07269369552e792c5edbab 700758 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u3_all.deb e9060b99b89796befa29825aef5a748c3e14075b 940498 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u3_all.deb ce83ed58daf077f1e5372b8ad43bb75987341379 589548 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u3_all.deb 02e4f90e9882f2dfc23070502d99bc824e0e4eeb 4001794 wordpress_4.7.5+dfsg-2+deb9u3_all.deb 105836d07c7a0618b8f40af633fced75ffb38508 7445 wordpress_4.7.5+dfsg-2+deb9u3_amd64.buildinfo Checksums-Sha256: a8d8c4d8df547ad5c29ef274751737adcf9d841c3c6d6a55fb9912057c3c1363 2567 wordpress_4.7.5+dfsg-2+deb9u3.dsc ee83a5db1fc83265db8d1fb06d9ae773237c934abc870f8763dea1a286a60532 6790072 wordpress_4.7.5+dfsg-2+deb9u3.debian.tar.xz e83e955a5e5013809401f66fe9e5e564086293695d46f5f02f5fe813f46699ff 4383450 wordpress-l10n_4.7.5+dfsg-2+deb9u3_all.deb 96055dc98335cce11c442eacb7453233c125a46b3aef71e18f78cdd72ad63190 700758 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u3_all.deb a89398c49334f787d027bc9e1d85f685dbacb8d1cdeec548ca9a6c2bb6c39582 940498 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u3_all.deb 0b1a30f2a79f5a934b0375d10be9d09d3974959323be1078eda885b8a6ae8b32 589548 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u3_all.deb 08c702f2f5811767478129ea3c8ef4e0b9c46efe9fd2c381cd4baed0b4fb78ad 4001794 wordpress_4.7.5+dfsg-2+deb9u3_all.deb 2258e317ea282a385d498349cc2e0f8cabf68e51a8682431958ca875f9e7e28b 7445 wordpress_4.7.5+dfsg-2+deb9u3_amd64.buildinfo Files: 05d97cf990d1831b428bd1c283aef6c6 2567 web optional wordpress_4.7.5+dfsg-2+deb9u3.dsc 220291c4a904926922abfbce283503aa 6790072 web optional wordpress_4.7.5+dfsg-2+deb9u3.debian.tar.xz 0110a76eaf878305a800db72bf659fe6 4383450 localization optional wordpress-l10n_4.7.5+dfsg-2+deb9u3_all.deb 78d358f3a2a1c52007b319418a582931 700758 web optional wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u3_all.deb 07be591415a201d217a20d0faca11637 940498 web optional wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u3_all.deb 233d57a41b5b14eba3cf719f3785624c 589548 web optional wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u3_all.deb 720ef8211916ec8ef1fdb60cf8d37f0c 4001794 web optional wordpress_4.7.5+dfsg-2+deb9u3_all.deb 3495d2302ddc76fbe92a33001463d97a 7445 web optional wordpress_4.7.5+dfsg-2+deb9u3_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAlrUhN0ACgkQAiFmwP88 hOMQ/Q/9Hs/gt8QR0O70p+0f9GllWF+MwvXYZUTMT4829z88g2HIayLselKJMe1D 48jTZxjhqkai/w8gxgEhQfmcWidoQXRI52FEQcuRdU7XyACfpsHEcBR0x0+ObQ0Z CFG3bwpxJjHj3iJHomD27585VelZh5NKgrvf/k4pFxRhJn77+ZZsqBeFqTVSH5nk deTUAfkcNfMyc+pN+5Nhgr/APCh1WfjNUQqJYpGCsjbK3tQN5ST6wp8zSNGPcMH5 BJFPSLHd2tIHxhAfysEqg+ta97uFDCNPvVspOgVfM6W4uuh9oK0t3hIoq+Bz9h4z VzcJyfs5uRp9lAUgVVCLcJBerYy8sORDBox2O6biFdCRgh8tjpCt8E5A/lXcijt/ TOhNeFYhB/HijMh3hTGiYiqu3rwTLXaFUWdwWlByTabwWZlIOV/Lw5M4Chp+c1fu avTQsG0S9xJbsxdPZLwqSHAmINm40t1UecM9ceAZroYeHru0jdNpxVwwQ/WjVuhV 3VRCpRmTau/huJGTvKXHMB317DV75DcnAuSHgKk09a8V32VWE5BUOCUrTWi06Tra 4n07eFqxxhOh/qmDhZAco9F56+A2GENpk3wXglQZXObaikn6aZa9G479V+o8T6YY mb9ulKBmo7f2NaH/xVrE6zxiUT80b3+OlXpHnHxi3svbpPjV6Rw= =2373 -END PGP SIGNATURE-
Accepted wordpress 4.7.5+dfsg-2+deb9u4 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 08 Jul 2018 22:06:46 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentysixteen wordpress-theme-twentyfifteen wordpress-theme-twentyseventeen Architecture: source all Version: 4.7.5+dfsg-2+deb9u4 Distribution: stretch-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyseventeen - weblog manager - twentyseventeen theme files wordpress-theme-twentysixteen - weblog manager - twentysixteen theme files Closes: 902876 Changes: wordpress (4.7.5+dfsg-2+deb9u4) stretch-security; urgency=high . * Backport security patch from 4.9.7 Closes: #902876 - CVE-2018-12895 Fix directory traversal in thumb parameter Checksums-Sha1: ffdcd6221f5aece954a355999eefcf159ab20607 2567 wordpress_4.7.5+dfsg-2+deb9u4.dsc 980e8d70fefa952d001fc1f6dc1710af94ed3198 6791728 wordpress_4.7.5+dfsg-2+deb9u4.debian.tar.xz 88ff239bd4c9efc8ff40ce5c63a1f91b383decc4 4383236 wordpress-l10n_4.7.5+dfsg-2+deb9u4_all.deb 789fb550200be1af73184e2a6a068f21a1cb6834 700820 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u4_all.deb 0ab3fa413e1886c9bf424c3dc6ec72e8e58cfe00 940594 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u4_all.deb 6ab5fe838b1159372eb842b8c853b106b38addb3 589544 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u4_all.deb 05275afaa138e2e4cba7012f137eccfd19b93902 4001532 wordpress_4.7.5+dfsg-2+deb9u4_all.deb eeccedf70d1f22c9eb36fdcf257e6aeeeaafcff8 7445 wordpress_4.7.5+dfsg-2+deb9u4_amd64.buildinfo Checksums-Sha256: d464f662b3c9bee41ddf0a024663f39088fbc8132accc69f10c0dc4ebfdb4bd4 2567 wordpress_4.7.5+dfsg-2+deb9u4.dsc deb400c94e68826c1a048d5bb874978fb15e62e76c65e29039a1da72633f2a3d 6791728 wordpress_4.7.5+dfsg-2+deb9u4.debian.tar.xz 3c8d7db2279c24782a84989f0e557e64323ca13e0dc5db963994b91d38afc210 4383236 wordpress-l10n_4.7.5+dfsg-2+deb9u4_all.deb 9a8df48c72945ca8e437f82039231b25771ded4b6e2730709542c8cc6beb5d99 700820 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u4_all.deb 7bd5463a65bf8ada456db341eb77a985b0288759ea5dbc52cf7fdcf1f213f3b5 940594 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u4_all.deb ef46993a6bd5c8e05bbc50e0d23fa1be9753fdd8410f8ad65c4cbeb72b251667 589544 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u4_all.deb 4dc8787d34dae86e63f5da8dd96b2ded4a22371b500198d77b5086c030a41a74 4001532 wordpress_4.7.5+dfsg-2+deb9u4_all.deb 733830341c68a7f6ad86c73916dfb33329f9d45e2fcac380cf450332745c28fc 7445 wordpress_4.7.5+dfsg-2+deb9u4_amd64.buildinfo Files: 0fed1949b5eed57ca50b793db4800db3 2567 web optional wordpress_4.7.5+dfsg-2+deb9u4.dsc acf6fcf707dfd603a99de11fe385a8ac 6791728 web optional wordpress_4.7.5+dfsg-2+deb9u4.debian.tar.xz 8161de824a1371b810eb26d49e50fcd7 4383236 localization optional wordpress-l10n_4.7.5+dfsg-2+deb9u4_all.deb cbf8b718bde37d178fb521625c44f79b 700820 web optional wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u4_all.deb 387a02757dffb6126e5b96411124a41e 940594 web optional wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u4_all.deb 34df3abee212991a18e0631e2e983c74 589544 web optional wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u4_all.deb 74bf388730dac80a8109951cd6ac6452 4001532 web optional wordpress_4.7.5+dfsg-2+deb9u4_all.deb eb790d2b60f759b2a43465e52e25a08a 7445 web optional wordpress_4.7.5+dfsg-2+deb9u4_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAltNysUACgkQAiFmwP88 hOMIxw/+Lx1q21UyWXWPx2KewDfibNy4kx8Gfv7cSnv5nt0JPjAhbM4gbdRDix9F F4/XmM1G5n/hwYLOPcDGcavLlX33ramv8EDKhEnoOwYhl81Xc5w0qfBlr/3FOoIJ mOWoab7M5HZmGC42kv9BnA08aqG4AQU/lgtbPUseVkLFTUNYOk5tNew4Djkeewel u+El/FYi21N4/zPYf5eBUquH0nM4u/DJjuPhI+SrEAXSYbu3dnHPHncrVEz+kAe2 m5FaNB+4QUjNKV4UtI8ml8M8gGJABCaCfSw/IIAjcvCZ7wbGmWVaP8oy/M4Ha6jk mgFvzT2STnAipvhcicf+5g3lhJNsYSMc+zAf/eEhpI2vpKvUHbUVROvUIcvfPWl1 3fI8F8brnqIvmMo/3OIWp9Ahp0A1oTbCiuMik6GmnZWugLRjQhxSDYvv9wPx3U7W rKNCrN/hZvUM7bI3AH34qYaHPl/OIH7oiAXJKQF4uw5zHqoPBRjrjbC3UESzs/gC NQQqKBQYouTV+2JyHj3tAaXOyiyhJcJezuGoLJE7DcKbXoEzXgsREEaLJ+O9vMfP +9/dR1aHAFtDAwrlTzupsS40UYIDpGq5qMxKVdUALmHKw6BYqieBuj2MHPKLP1or X1dT2JJksmYxI8nsKkjW1QI/w8lzBOw+ECL9XFWMtvC3fxOblSQ= =tlmr -END PGP SIGNATURE-
Accepted wordpress 4.7.5+dfsg-2+deb9u5 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 28 Feb 2019 20:25:00 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentysixteen wordpress-theme-twentyfifteen wordpress-theme-twentyseventeen Architecture: source all Version: 4.7.5+dfsg-2+deb9u5 Distribution: stretch-security Urgency: medium Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyseventeen - weblog manager - twentyseventeen theme files wordpress-theme-twentysixteen - weblog manager - twentysixteen theme files Closes: 916403 Changes: wordpress (4.7.5+dfsg-2+deb9u5) stretch-security; urgency=medium . * Backport security patches from wordpress 5.0.1 Closes: #916403 - CVE-2018-20147 Delete files through altered meta data - CVE-2018-20152 Create posts of unauthorized post types - CVE-2018-20148 PHP object injection through crafted meta data - CVE-2018-20153 Edit other users comments, leading to XSS - CVE-2018-20150 XSS in plugins through crafted URL inputs - CVE-2018-20151 User activation screen visible to search engines - CVE-2018-20149 Bypass MIME verification causing XSS - CVE-2019-8942 Remote Code Execution (RCE) in uploaded image files Checksums-Sha1: 460597156c19c5184757ee0def60c777ff9a42c4 2567 wordpress_4.7.5+dfsg-2+deb9u5.dsc f203b60b65e5f3752021ec841d00356e4ff7ff17 6796760 wordpress_4.7.5+dfsg-2+deb9u5.debian.tar.xz b4211510d8f7d6c5132d7de2052e81685ae545b8 4383668 wordpress-l10n_4.7.5+dfsg-2+deb9u5_all.deb bceeaf41b9159ca49a98050e0061933b2397f7bd 700948 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u5_all.deb 54362585d9647913b2319fa0a22994e1aae6c184 940798 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u5_all.deb c8c2735ede36adf7a1486bf28d57f421f2a49a11 589792 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u5_all.deb 93d149114230f84f8a26a3ed240bd880f5fd2939 4003568 wordpress_4.7.5+dfsg-2+deb9u5_all.deb b303be374aff0082ba75eff729b42611636be5fe 7445 wordpress_4.7.5+dfsg-2+deb9u5_amd64.buildinfo Checksums-Sha256: bc46b50915f4c7d482fd1fd3ba61d3901aff4439681f5ff8a2690c3c8bfc2d1a 2567 wordpress_4.7.5+dfsg-2+deb9u5.dsc 0c2eabf24870dcba9d2cffd77931f1fd8b566f3e76e5560f9bdcfec2df7970a4 6796760 wordpress_4.7.5+dfsg-2+deb9u5.debian.tar.xz d00490f520ebf1f3bdab7be92939e07518b0a46a4c293b635c5ca1bf22be0f22 4383668 wordpress-l10n_4.7.5+dfsg-2+deb9u5_all.deb f33d81386de882a3e639d9723b80bf92c7ead4669f65e5596e0cd0b855cbebfa 700948 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u5_all.deb 024887fb7d6e6a5260daf8172157407527b6818ac76aa5b33436c25f55d7d65c 940798 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u5_all.deb 98d9223ec76ad6024dd3ab78007a61bb06717d362b3e1409958f4f79add16955 589792 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u5_all.deb 8ab4fbd1f56562c10bfd4af2a4e34b00659b633624e4143d05a168328e3890f1 4003568 wordpress_4.7.5+dfsg-2+deb9u5_all.deb d6824818f70579b258782a9bc97feaeb875d367320a1997ef2979010f99d22c7 7445 wordpress_4.7.5+dfsg-2+deb9u5_amd64.buildinfo Files: e7d84a51d5898419bb56757163267055 2567 web optional wordpress_4.7.5+dfsg-2+deb9u5.dsc c300655016d66421b8ad726a4d650f64 6796760 web optional wordpress_4.7.5+dfsg-2+deb9u5.debian.tar.xz 35e902954803fb3390c8645b93bac9c7 4383668 localization optional wordpress-l10n_4.7.5+dfsg-2+deb9u5_all.deb 0b0c4cf08bad7f77c2f2c2316bb34aed 700948 web optional wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u5_all.deb 5decad61af62fd09f78bad531dbd1a07 940798 web optional wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u5_all.deb 06574c52e070e264303733828d0cd55e 589792 web optional wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u5_all.deb 0b517dcf4510c6d8a55763274ed41bd4 4003568 web optional wordpress_4.7.5+dfsg-2+deb9u5_all.deb 93412949d2139fdaea09a98ee7774acb 7445 web optional wordpress_4.7.5+dfsg-2+deb9u5_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAlx4le0ACgkQAiFmwP88 hONaZg/+LsCt1Ry5lK+bWJYcrQMJuf8AkRF+dJKhp/7r4hH4zr6maGLv0uVtWkOZ guzUN9uQNQY4iJvvDOvvpGxITC9USgep12VXyr/NfkH32e/nsUwxZqP3AV35rxUH immQIVkp0TBVzyJA6Dz7zykL4pyQg1IPgFMwzRljQh280W5lYspk/C7dKzlLrirz 4rmop4Qd3rU14uIaOAjwRoy8FRgT0RiBVdisu2JGrnSXt6U5IS/0OndcTbiRN4bM 1oVUB17wiaJYEeUjeaWD+V+ZAS6CH11O0tvxA5X1089bdp/VvMnlmA/mWxeb35AB TdHEKVCw8qUJ2pgnIEcaPOu3nCE1Bgu81TlTHkR+96OSxMya46V+TembW/lxYzvb WyhBog81GPW82R6X397mo25VFEg9EmwUTsPCm5XDpb0O0LI6rmfCsxjGNxl9Syf2 MvWF27P1yTTca5+XbI+ym15URv2rwvA50qe32pMHq0RPgh3W1NMS0m3tpClpvikD LNMz2x2Mj5irv+c5Y09/bpdEr1XgrlpOb3kQ6vlNAgdbJcu8GvWkv3jR/mZDfTzg QwdfYq3XEBq7tiyj4sjEr5lD2wUB+4aLghhFuvRhyAdHi6LRISYHYXrtN9Q1nmky FCUbMnRzvrnS9sk58OiNp5vMpY51ccFjxd3luc9Q0UqEj5ch8Vs= =XldY -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u14 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 24 May 2017 22:24:48 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u14 Distribution: stable Urgency: medium Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 862053 862816 Changes: wordpress (4.1+dfsg-1+deb8u14) jessie-security; urgency=medium . * Backport patches from 4.7.5 Closes: #862816 - CVE-2017-9062 Improper handling of post meta data values in the XML-RPC API. Changeset 40699 - CVE-2017-9065 Lack of capability checks for post meta data in the XML-RPC API. Changeset 40684 - CVE-2017-9064 A Cross Site Request Forgery (CRSF) vulnerability was discovered in the filesystem credentials dialog. Changeset 40730 - CVE-2017-9061 A cross-site scripting (XSS) vulnerability was discovered when attempting to upload very large files. Changeset 40743 - CVE-2017-9063 A cross-site scripting (XSS) vulnerability was discovered related to the Customizer. Changeset 40711 * CVE-2017-9066 not fixed as the relevant code has changed dramatically and there is no upstream patch for it. Insufficient redirect validation in the HTTP class. * CVE-2017-8295 Don't use client-provided data to form password reset from email address, from WordPress ticket #23239 Closes: #862053 Checksums-Sha1: 6992e217144edb572b91420cf4668a316d2f6cce 2206 wordpress_4.1+dfsg-1+deb8u14.dsc aecf3343a5b0b3b5e559a7e1eb41b32f2259414e 6129728 wordpress_4.1+dfsg-1+deb8u14.debian.tar.xz d38e38a68b1eebba094e6863764e0350522fa5ef 3195086 wordpress_4.1+dfsg-1+deb8u14_all.deb 0f926ddb33adc4287708dae4bd44c642bf3351c8 4246876 wordpress-l10n_4.1+dfsg-1+deb8u14_all.deb eae5ee49eb7f94e86ad7b6cb8e42da58305a7d54 502928 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u14_all.deb 709520bd322ec40b57181c6074e83f7887ce85f9 803836 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u14_all.deb 751ddcab0d9a5c616d1e838c5aa2db9cee195e79 321408 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u14_all.deb Checksums-Sha256: 609a1a1e165605c45aed4374962112511f5d2b51c2a22c3a4c2db39247bdcfa2 2206 wordpress_4.1+dfsg-1+deb8u14.dsc 3e661549549ed624dcae24c794f95e61d3092edcb8e8676fdfb045a7ba1ddead 6129728 wordpress_4.1+dfsg-1+deb8u14.debian.tar.xz 0ae928df0c24a663e804ae4a23c60e98f58552b54b7e862e7bb6d844382bead7 3195086 wordpress_4.1+dfsg-1+deb8u14_all.deb 81d990e84c19a7a981b562ea175ad7680d37c769b942ec9fe37bdf1bc19c044f 4246876 wordpress-l10n_4.1+dfsg-1+deb8u14_all.deb de1a849613a7e8eea5a91437757afdccc9aca5781cb8d2fcc73be212fb3a7f10 502928 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u14_all.deb 02614dc4be3f5214ac033aabcfb3a9c4e17647436a8f69a22be7b67d5cbb0cc5 803836 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u14_all.deb d9a4d329f75e8697af88d58462a58b66266986037a65e3cfb160d904a71c4fda 321408 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u14_all.deb Files: 27c2081220e8d626f73689bc86ea 2206 web optional wordpress_4.1+dfsg-1+deb8u14.dsc b035d001eccb9ca647ae135aff1b205a 6129728 web optional wordpress_4.1+dfsg-1+deb8u14.debian.tar.xz 12b570d668be90fc5b85e3915e7b4525 3195086 web optional wordpress_4.1+dfsg-1+deb8u14_all.deb 2c138c159b53cd36cc37bea33b33996f 4246876 localization optional wordpress-l10n_4.1+dfsg-1+deb8u14_all.deb 05e24fb8304a6540b527dff44640ef6c 502928 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u14_all.deb 0f0b708a3cec3edd2373392f3366a4ec 803836 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u14_all.deb 018961b042c46458dd381507f3f2c6cd 321408 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u14_all.deb -BEGIN PGP SIGNATURE- iQEzBAEBCgAdFiEEAqSkbVtrXP4xJMh3EL6Jg/PVnWQFAlkvoS4ACgkQEL6Jg/PV nWTDSAf/TjNiSUUbm0y53KsLziBpR7m1pqJlessKgPLRkeyEq9TetzMfDk34DkpV uJndrX6cvof4236MZkm7TwcqwtQZLfk0ZInYW9DTkmIs+tw0KdXDTA5WuYcmDqmb n+JZFCDbChbqQJrm5DDxccBAtbvSrg1eTO5pSanKJ1c7tOfIzsUOgRdM8FHVnZb2 MEZ74OZOqrWrtPcgJ9cOAYlu6Pbu7YBukoL2lcvEsr3gnQicRnE0QQBNYPnPs6iA KxPQ4rPuzWWozxg4/oVUFFWmVF26a2vCCKKSRrKClrb1BKw7JLZijzan1l6jWj+q WPbWcywFvnIWxAohT45u5JM8dZ3deQ== =r4Ra -END PGP SIGNATURE-
Accepted wordpress 4.7.5+dfsg-2+deb9u1 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 07 Oct 2017 07:11:32 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentysixteen wordpress-theme-twentyfifteen wordpress-theme-twentyseventeen Architecture: source all Version: 4.7.5+dfsg-2+deb9u1 Distribution: stretch-security Urgency: medium Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyseventeen - weblog manager - twentyseventeen theme files wordpress-theme-twentysixteen - weblog manager - twentysixteen theme files Closes: 876274 877629 Changes: wordpress (4.7.5+dfsg-2+deb9u1) stretch-security; urgency=medium . * Backport patches from 4.8.2 Closes: #876274 - CVE-2017-14723 $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi) Changeset 41472, 41498 - CVE-2017-14724 Cross-site scripting (XSS) vulnerability in the oEmbed discovery Changeset 41451 - CVE-2017-14726 Cross-site scripting (XSS) vulnerability in the visual editor Changeset 41436 - CVE-2017-14719 Path traversal vulnerability in the file unzipping code Changeset 41459 - CVE-2017-14721 Cross-site scripting (XSS) vulnerability in the plugin editor Changeset 41413 - CVE-2017-14725 Open redirect in the user and term edit screens Changeset 41418 - CVE-2017-14722 Path traversal vulnerability in the customizer Changeset 41430 - CVE-2017-14720 Cross-site scripting (XSS) vulnerability in template names Changeset 41413 (same as plugin editor) - CVE-2017-14718 Cross-site scripting (XSS) vulnerability in the link modal * Hash user activation key Closes: #877629 Fixes CVE-2017-14990 Checksums-Sha1: a9e488c4df0b36dd39b41d462f810102f26435df 2567 wordpress_4.7.5+dfsg-2+deb9u1.dsc edf2c207b6c6c173d8958c0d9191e1e0d532e042 6240440 wordpress_4.7.5+dfsg.orig.tar.xz e0417f8708cc10ca56041e972fb4ca083bdac5e4 6785340 wordpress_4.7.5+dfsg-2+deb9u1.debian.tar.xz 014d493c433949581827abb22faad2d3f6297844 4382638 wordpress-l10n_4.7.5+dfsg-2+deb9u1_all.deb 99a9c6e1853fc992fb8645dedc7fe1302353cbbf 700472 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u1_all.deb db0d15595516b0867938d9fe49b7bd15bbd64ef0 940094 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u1_all.deb 35adf0a11c5958aac424850a4e4304f019fced52 589188 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u1_all.deb 1a1fe93a389e4ae808187c824014fc2f01d57eca 4000422 wordpress_4.7.5+dfsg-2+deb9u1_all.deb f86f46fb5375b65b7438360b44583563fab1ec26 7445 wordpress_4.7.5+dfsg-2+deb9u1_amd64.buildinfo Checksums-Sha256: 37ba9d3c65c8f242019ab92e1c896c8bbb7f6ef376f4805eff8f233ab82d869b 2567 wordpress_4.7.5+dfsg-2+deb9u1.dsc a21bc1f4042bbd77eb1ddef2cdcd3fb60f121835cf5d219a6e12a2d06a839b7f 6240440 wordpress_4.7.5+dfsg.orig.tar.xz b610d6c3784f29ce1344c107d0b39029bef293c08adbad357263d2d6bf7f4f6d 6785340 wordpress_4.7.5+dfsg-2+deb9u1.debian.tar.xz 441b2b00c7cb3f223a6881f0054f94f91f02c93ac0dc209bf8b1d5c653ec9be8 4382638 wordpress-l10n_4.7.5+dfsg-2+deb9u1_all.deb b06298da79ea789b0765b248359100fb0807a3a24249e7c126726ab21bb537a8 700472 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u1_all.deb 572dffe8d5adc67d54bc69dde3b1dfa4c917d7549d2c1594ef802bd124d8735f 940094 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u1_all.deb ff42d848ff38035275ab9dbe524fe8f819cf0477ac63b88d8c95e9c0b5f8e501 589188 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u1_all.deb 2a0097fcf5d66f912e70f36ed27f0ad9d2888b3e08ac638f3d0a6ac66e420b53 4000422 wordpress_4.7.5+dfsg-2+deb9u1_all.deb 5da5441b9c3aa36ecbe618a003d703eb2a610d55648f6710feff4fe52182cf0e 7445 wordpress_4.7.5+dfsg-2+deb9u1_amd64.buildinfo Files: 21a555aa4c57f04d5bc92477481b9063 2567 web optional wordpress_4.7.5+dfsg-2+deb9u1.dsc acb0c5ca4df36e2eef3274d6adc4f8b8 6240440 web optional wordpress_4.7.5+dfsg.orig.tar.xz 2ac4750281b13334542a7db72cacd80d 6785340 web optional wordpress_4.7.5+dfsg-2+deb9u1.debian.tar.xz da8441d62a0fc891beaf9e36137b032d 4382638 localization optional wordpress-l10n_4.7.5+dfsg-2+deb9u1_all.deb 3d21c554d514bcaa1cf9e30f2ce89294 700472 web optional wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u1_all.deb 51cdc6b546ec088cb991cb9d0d8d49b7 940094 web optional wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u1_all.deb fea91b00203c8603998a988bbb55bcff 589188 web optional wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u1_all.deb f05853250ca3347238d7acd3d908d766 4000422 web optional wordpress_4.7.5+dfsg-2+deb9u1_all.deb e27b814900766441f5aebbccefedafb6 7445 web optional wordpress_4.7.5+dfsg-2+deb9u1_amd64.buildinfo -BEGIN PGP SIGNAT
Accepted wordpress 4.1+dfsg-1+deb8u15 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 11 Oct 2017 21:27:47 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u15 Distribution: jessie-security Urgency: medium Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 877629 Changes: wordpress (4.1+dfsg-1+deb8u15) jessie-security; urgency=medium . * Backport security patches from 4.8.2 - CVE-2017-14723 $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi) Changeset 41472, 41498 - CVE-2017-14726 Cross-site scripting (XSS) vulnerability in the visual editor Changeset 41436 - CVE-2017-14719 Path traversal vulnerability in the file unzipping code Changeset 41459 - CVE-2017-14721 Cross-site scripting (XSS) vulnerability in the plugin editor Changeset 41413 - CVE-2017-14725 Open redirect in the user edit screens The term/tag edit screen does not have this issue. Changeset 41424 - CVE-2017-14722 Path traversal vulnerability in the customizer Changeset 41430 - CVE-2017-14720 Cross-site scripting (XSS) vulnerability in template names Changeset 41413 (same as plugin editor) - CVE-2017-14718 Cross-site scripting (XSS) vulnerability in the link modal * Not vulnerable: - CVE-2017-14724 Cross-site scripting (XSS) vulnerability in the oEmbed discovery oEmbed feature not present in this version * Hash user activation key Closes: #877629 Fixes CVE-2017-14990 Checksums-Sha1: db2320ddadc5c9a4f30cecd0e14948c7b26562a1 2551 wordpress_4.1+dfsg-1+deb8u15.dsc aa5bc8c96a94d92174ecd8d559647bc179d27c74 6168064 wordpress_4.1+dfsg-1+deb8u15.debian.tar.xz 835bd96002b29ce47a861c04b449531a81256dce 3174878 wordpress_4.1+dfsg-1+deb8u15_all.deb bdd9505dfd9074f963dd2ffa08d741415e0f733b 4240582 wordpress-l10n_4.1+dfsg-1+deb8u15_all.deb 80530f567769c5df70bac3bd26762f7d8ec3ab8f 504074 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u15_all.deb e81b460ffe9a7757a5622e8bfa84a94aef699924 804688 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u15_all.deb e98890b55cda92eb2493b2adfa471911b221d265 322296 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u15_all.deb Checksums-Sha256: 7aa386fcde3fd7a463fc077ad02aaa6baf31d7f09f014033b9a8fb2dbbf8393a 2551 wordpress_4.1+dfsg-1+deb8u15.dsc 7edf0bd3dae8b915cd5856dd6bad484fb468460d67ee68e199dc53f57de4b19f 6168064 wordpress_4.1+dfsg-1+deb8u15.debian.tar.xz cb592e42e9315d8f8bda9e04b0c349c30dba6472956c1804753fa0ddb80054c8 3174878 wordpress_4.1+dfsg-1+deb8u15_all.deb f93ecdbcbfcd87c54f46852715fd0ac719047a0c21512f6a74875c0561ba3a54 4240582 wordpress-l10n_4.1+dfsg-1+deb8u15_all.deb f711f36f78a61866e087885934f2945dad7fa53d04986f87cfa53a67310e85cc 504074 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u15_all.deb f6b268d99dcfdc01e6159dc7caa3763aed2016de7bc3c0d5a198c9509153 804688 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u15_all.deb 36042cfe380ff53ee0ce3404dd8a3e9401c3550ddfb3b9031c46ec1d74a749c8 322296 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u15_all.deb Files: 7ea61893f9e2d1bc3765f637b91a28e8 2551 web optional wordpress_4.1+dfsg-1+deb8u15.dsc f73c90aca3732b650c1fc2ddbda4e2d6 6168064 web optional wordpress_4.1+dfsg-1+deb8u15.debian.tar.xz 03aee73fff713d59a75121d45c655233 3174878 web optional wordpress_4.1+dfsg-1+deb8u15_all.deb 5c55e5a0af05bace40d7f7cf5ffe1086 4240582 localization optional wordpress-l10n_4.1+dfsg-1+deb8u15_all.deb 5bb33915d7560845b125c7137dc17c77 504074 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u15_all.deb 5a9e058b8c151e5b8f3ae1f8d5ed6b50 804688 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u15_all.deb 79dc297d588df7a283cc1a411f04f1e3 322296 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u15_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAlnd90wACgkQAiFmwP88 hON9HBAAoH3v6So2izPUITUPpMKot79GrgzpobQeFD5n0y2epfO6PS4cyBp2PC7h 5VDvZ2tz62RdtGymW0OcfluQJw7uO2xJFPKV8MNqEucmfJ05nUYqHnBfRNLE5ww9 ZAGOE/4NYZoyE1jA+ZPtfdYoSoTrzc3bbOtUhn4F5YUywC0rIaNPLolzlvq45vJA FEuxxvlmG0SdrBw291L8xso0yCnwKc98VgRVheR/Qs1L3+Rc6EnwNFkFTdCtEjI7 IAfxvRYWEZopig6E8cK1LbaI8+1oIq8Feg/UIn3G+kC/eSo+Npc0gsf3OaCYVTsF YUBvcPWE67NtVE4AHrt+QlPiNn9efaj/lo2QqyVQxZryYrpqrIcCRKIqCPLSKtFa KCFzDdQcA5fmW0cIhVijI0ZD6WhvKQ2B9UepZAOBX2ZSYD/26N67Jj97hqeFm04f HqgOevoLTXK269gdRaX79a2SN3rmmwvzEdTffGDyZILG2rxlpJc4Sg74BoBvQ
Accepted wordpress 4.7.5+dfsg-2+deb9u2 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 04 Jan 2018 18:19:44 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentysixteen wordpress-theme-twentyfifteen wordpress-theme-twentyseventeen Architecture: source all Version: 4.7.5+dfsg-2+deb9u2 Distribution: stretch-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyseventeen - weblog manager - twentyseventeen theme files wordpress-theme-twentysixteen - weblog manager - twentysixteen theme files Closes: 880528 883314 Changes: wordpress (4.7.5+dfsg-2+deb9u2) stretch-security; urgency=high . * Backport security patches from 4.9.1 Closes: #883314 - CVE-2017-17091 Use a properly generated hash for the newbloguser key instead of a determinate substring. Changeset 42272 - CVE-2017-17092 Remove the ability to upload JavaScript files for users who do not have the unfiltered_html capability Changeset 42275 - CVE-2017-17093 Add escaping to the language attributes used on html elements Changeset 42273 - CVE-2017-17094 Ensure the attributes of enclosures are correctly escaped in RSS and Atom feeds Changeset 42274 * Also backport patch for $wpdb->prepare CVE-2017-16510 Closes: 880528 Checksums-Sha1: 55cb71b5cd94997ba75dbe7bb0e4e33396a6390e 2567 wordpress_4.7.5+dfsg-2+deb9u2.dsc df248276f0f664089b31893d2caada20e98dabf1 6789772 wordpress_4.7.5+dfsg-2+deb9u2.debian.tar.xz 385ea0764ef23cb7e7d1f6dc6760267c56480e70 4381066 wordpress-l10n_4.7.5+dfsg-2+deb9u2_all.deb 435025d32b6ec95a0bb1524d39f9deb87aaf657f 700666 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u2_all.deb 4c042c43df8db620fbcb2d41c3e83ab8f2202a6d 940400 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u2_all.deb b39181a1c44506e5ded048ff71bb71ec01f9a359 589388 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u2_all.deb e61f52bf9556463131077cd1dc45c4f6ce87a421 4001636 wordpress_4.7.5+dfsg-2+deb9u2_all.deb 85c59079a60f85004a4ac9e7c083efbc06775ea7 7445 wordpress_4.7.5+dfsg-2+deb9u2_amd64.buildinfo Checksums-Sha256: 1d2f5008528222dbf7c14a7f31ea487779adbc51b52bb73996b945566c72dcfd 2567 wordpress_4.7.5+dfsg-2+deb9u2.dsc a20936583082cdd5919e0b8c204c74007d8588ce2b60f96e07a6a7e843af1b74 6789772 wordpress_4.7.5+dfsg-2+deb9u2.debian.tar.xz b5b02cbfcf3c6b4c0ca14fe462dca7b55b12cc0fbbe0a062507c7aee7df6f36e 4381066 wordpress-l10n_4.7.5+dfsg-2+deb9u2_all.deb dfeb9ede00697bea5b2006d74d334e9a8c5c18b78e6ac1997ffcf25ed0870d25 700666 wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u2_all.deb 067fa464da20513c7b695eb2e62138161ee0f64710aa919cd117120941bf4648 940400 wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u2_all.deb fa8416e21f1b0bb940a541427b2ba7560f914dd165edf4b8a21bdff654e98f9d 589388 wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u2_all.deb 2521a497c9461bf04cd5bceca1ea6cea641cbc8c7654c70c5f063b08b2c1b52a 4001636 wordpress_4.7.5+dfsg-2+deb9u2_all.deb a4e1690c432675a2944b561c5fdcca179ae95a15105d734a540ac6acdea6bfa1 7445 wordpress_4.7.5+dfsg-2+deb9u2_amd64.buildinfo Files: 2dbec2a04d3b82680024bda07e49d7e7 2567 web optional wordpress_4.7.5+dfsg-2+deb9u2.dsc 35709d7aef2653226f8ed7c338639a5e 6789772 web optional wordpress_4.7.5+dfsg-2+deb9u2.debian.tar.xz f874980bbf4286ec90b4a6bc11d0aacc 4381066 localization optional wordpress-l10n_4.7.5+dfsg-2+deb9u2_all.deb 96362e78e49b6d2f7bb8aedd42d070ec 700666 web optional wordpress-theme-twentyfifteen_4.7.5+dfsg-2+deb9u2_all.deb cd094c5961dcfc0b3fc0cefa0fb3cb98 940400 web optional wordpress-theme-twentyseventeen_4.7.5+dfsg-2+deb9u2_all.deb ac33f61cafadf2011b7f2a33df12c889 589388 web optional wordpress-theme-twentysixteen_4.7.5+dfsg-2+deb9u2_all.deb 61244d755847cfc450cb8491082f9be2 4001636 web optional wordpress_4.7.5+dfsg-2+deb9u2_all.deb e928e27308338f4bf61b08ee1a5cce70 7445 web optional wordpress_4.7.5+dfsg-2+deb9u2_amd64.buildinfo -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAlpQDa0ACgkQAiFmwP88 hOOrpRAAkgFRFSEVJUQS5xf8CgYRU1IuneIWAEw9kwaZZuhuNglzhaO4jeXoTw0q m6uVbuBfsmonIqw8mTh9oMuGtVvaYs3+TjDnxPPbUo6hUM4qaOqvIP0vimI2fge0 zgqhG6i9hQUNDgONkZtzX4vWDjSuHfGFD+jOzrUKL9f6KCfbZbuSx1B5Y74S2mVG lPYug35oyRLWSjghwf3EJNSoq/5iY3LqQitShsxX3IAC6HEdWiijtYQIcW4NmMak JBtWn5/Y5yLflqubfscSddgWcaG0v4QDcGD89CMZ+QBzK6pc6PDCyBthzUszKXRZ Da5wHWi+OGO5PdGzANPUOeelr9zVr3jnTihIZrVYJybuYr0cUU6cB2JXzTP20yvT BzWzgrxrS2hz3hLOWIi+S5c9kn/8t7e7xCLQ8S5Wv7oiZ1GLgRmWqnFf4AjposGn KZrkX3bw02oAFmFbv1HMjhAgN3VfEqwgRLHb/UPAqq7HqRJ43v0gPuZVSOb7MBV4 h1Xzs4QFaScR0Cg7g8L1kHqccbgkmp4VLSDz3SY4hJj0hDIts/PwZtJve+NViTdc gKJqsbe4IjraBZhIilXjYi85OFVWKQdwQpm62U1NwsDhXcDWep48bV6olkHjvk3f 1eraIYm4YJ1WqGo2sjscqIcQTAnEtT3DE2frjtBXJONxgXvMQok= =SZzV -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u16 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 06 Jan 2018 20:10:26 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u16 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Changes: wordpress (4.1+dfsg-1+deb8u16) jessie-security; urgency=high . * Backport securitty patches from 4.9.1 - CVE-2017-17091 Changeset: 42296 Use a properly generated hash for the newbloguser key instead of a determinate substring. - CVE-2017-17092 Changeset: 42299 Remove the ability to upload JavaScript files for users who do not have the unfiltered_html capability - CVE-2017-17093 Changeset: 42297 Add escaping to the language attributes used on html elements - CVE-2017-17094 Changeset: 42298 Ensure the attributes of enclosures are correctly escaped in RSS and Atom feeds * Additional two patches for security fixes - CVE-2017-9066 Redirect validation patch from backports - CVE-2017-16510 Changeset: 42064 Restore numbered placeholders in $wpdb->prepare Checksums-Sha1: 1751a69404aef2cdbb8a9262f0a1f36399d08a2c 2551 wordpress_4.1+dfsg-1+deb8u16.dsc 05b638902d28f40a5fca94cf5b0181681d7e136e 6171896 wordpress_4.1+dfsg-1+deb8u16.debian.tar.xz fb4eb4beab8cbe93dd7c360145d4113b86a16866 3176264 wordpress_4.1+dfsg-1+deb8u16_all.deb 97f1440a9a4d358324fb3ff9765bc6bd08f3e057 4241918 wordpress-l10n_4.1+dfsg-1+deb8u16_all.deb 40ffa5f35252774597f98671ffe01d7aa491ed2f 504320 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u16_all.deb 71d2e67d630842b7a90dc39c76742d69e2d4803b 804936 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u16_all.deb 43bf32069ae82a8d0fbcf09f961a56ddcdcda8d6 322572 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u16_all.deb Checksums-Sha256: 13dee5ef3ef9000291fff99eec655901c39270c60ab9d585360d2e4da97bb6b1 2551 wordpress_4.1+dfsg-1+deb8u16.dsc d1ee54cdf16229eca486a09babca1db46cfbb86006c58fd74e7ec04ea9eca8b8 6171896 wordpress_4.1+dfsg-1+deb8u16.debian.tar.xz 2d76f29dd37d80fe009c0b1eb8f171b983d3cae3384dd403e9822f6cceb200dc 3176264 wordpress_4.1+dfsg-1+deb8u16_all.deb 011fd6b9c42e0601f92501a9ee95dcf1cd15db8d314fb5fe133ecbcb5d747897 4241918 wordpress-l10n_4.1+dfsg-1+deb8u16_all.deb 6c17ef5545b2720a55100bdd21e09d825cfc00e24ee2227427b160e655a1cf74 504320 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u16_all.deb 741029b76b2be37e3c5329f452301f8f03956b18d37fad77312624a59a548aa0 804936 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u16_all.deb 89b7c116fa05920699f55c19f3f50de64d7cdf674b946f030fdb081a9221f94a 322572 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u16_all.deb Files: 30cd65d05a58af5d0de2bdd8672ed04b 2551 web optional wordpress_4.1+dfsg-1+deb8u16.dsc a84fd668bc1b813b4265728cb9371af1 6171896 web optional wordpress_4.1+dfsg-1+deb8u16.debian.tar.xz 32492887ba36c4c8c87dd3094554db04 3176264 web optional wordpress_4.1+dfsg-1+deb8u16_all.deb f7c36370124c8639d7070150c2578c24 4241918 localization optional wordpress-l10n_4.1+dfsg-1+deb8u16_all.deb 02decb36b5ed2be98774f79f999a15ad 504320 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u16_all.deb dd2b1bb5ac752a6fe8cbdb8d4182cc4e 804936 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u16_all.deb a6e3b15f0db43a7a5fce1dd40d8192cd 322572 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u16_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAlpa0LEACgkQAiFmwP88 hOO11g/+L83GBzjuwv6Ead2kUlcRSQ/1QWHVXpFvFE13bcVHpMQFBhxu6MUXlNUr 1/i1DufMCLCGFABtofKjtNhGVREKEieZ3hmqX5QXXVCR4ovpeJ0doi+eOiA3UBxf ommiHn3zVQqXzUKVC/kmwz1JEbQMlxhoR7teU118vntirOk7pQVzsxOnlwikQxXF 4HLSQdKMKD3a4FvO8YGif2zWAJLFjRJHhgwTAN5fQMVZpYZEXPZv5/HP4zwE3+tn yX+Ue2CSByjr4tdKYv4hJGpGonEpTCJV/hRM9JJjYZbSxK+Q0UXalYRv1D5CFSeF E3mcUrnY2YEKwmtmAB34dEzFDX37wSYWHXEbcY96tAn5xM4KZxUz+QI85bfQ3UF+ N3nT2Kcmk07v/jtzwUWd87L0dCHlLrjjLcaAW6xXcalKlJ4FCAAif7a6Waq1WCb6 tY+lgZVHbdIRTZ6bS/jNPtc6y/BThnvDFTBu7zULJkXKAGsjIQOTzFPGaUsY24cq TAGdYoSxuXRFw+5ltJbWrmVUPHaFpNJugtP/t0NuE2X1piAKb5rMY3zxMCjeVLtW V/sfCVzdI7eaoyf0vfJh/iqXfDMIwAmYoRAo4WbQXP7pgBKTw1BeHSl3DIhBCY8H vhwnft0H7b2D/M5j8thfrDM/q3UcILzac2l4a1SXFE4A7UbKQms= =aOqh -END PGP SIGNATURE-
Accepted wordpress 3.6.1+dfsg-1~deb6u2 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 10 Apr 2014 22:12:48 +1000 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb6u2 Distribution: squeeze-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 744018 Changes: wordpress (3.6.1+dfsg-1~deb6u2) squeeze-security; urgency=high . * Non-maintainer upload by the Security Team. * Import some changesets from Wordpress 3.8.2 to fix the two security issues present (Closes: #744018) - Changeset 27976 - CVE-2014-0165: Wordpress privilege escalation: prevent contributors from publishing posts - Changeset 27976 - Changeset 28054 - CVE-2015-0166: Wordpress potential authentication cookie forgery - Changeset 27873 - Hardening to Forward pingback IP during pingback verification. Checksums-Sha1: b2ecf1ba4556d21076c7cb1e4280d1d06721e572 2109 wordpress_3.6.1+dfsg-1~deb6u2.dsc 734c4769dd28fc70ac9bc2da3b1b04f374674b58 11016086 wordpress_3.6.1+dfsg-1~deb6u2.debian.tar.gz a4ca8f45ff2d5b2cef751514eb6d1c942d50f9d1 3988970 wordpress_3.6.1+dfsg-1~deb6u2_all.deb 599b5db6c53456bceafaa962f114ec597d21759f 8880744 wordpress-l10n_3.6.1+dfsg-1~deb6u2_all.deb Checksums-Sha256: af1244e447b1cd0841a56e872c6c4a88b207de6bc801c85dfdec59bf1186bf4c 2109 wordpress_3.6.1+dfsg-1~deb6u2.dsc 9b59c086a49b64ddc898ecfc6ea7771728fbc1eacc61a7adbac15692fdf0d5bf 11016086 wordpress_3.6.1+dfsg-1~deb6u2.debian.tar.gz 1acd92be106deab9e08ef6f342c2a833ffc722684813ce5fa1db9c9c20c99f52 3988970 wordpress_3.6.1+dfsg-1~deb6u2_all.deb 71c30ff8b8c7e6508a0b0ef9d37e468531fc6680cdb01dbaf24007f243a0887a 8880744 wordpress-l10n_3.6.1+dfsg-1~deb6u2_all.deb Files: 56714fe9a3205842c94219d262ac5b56 2109 web optional wordpress_3.6.1+dfsg-1~deb6u2.dsc 8154a5c61fece4937c34f685e66a5992 11016086 web optional wordpress_3.6.1+dfsg-1~deb6u2.debian.tar.gz 35e71824c35ceeef3ef724de8a6e4fb3 3988970 web optional wordpress_3.6.1+dfsg-1~deb6u2_all.deb b82b1d374968586f5c748bc83b25d9d5 8880744 localization optional wordpress-l10n_3.6.1+dfsg-1~deb6u2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJTSXqmAAoJEAVMuPMTQ89EhakP/2HO5B3GSoNZRtXAsACm0fXj 8I3H+rzxJDhetL+sIh9xeTmLM3SHiJUfSo3AZoOaI/cKD8Z/Z/Zy8uZZ77C7UPe6 FKxKCwzEeo+RVBJ44750x7FK+sb25K5sYrPZp0pSgczK1pPx6Ka6Yng3J+Ga5v8w p58tB9y9GiuCYIvUclCeh9f2JtjvuV3W8H2ziILhZOVD/x8HDYEVEt+Pw3/7TQKe rUnBI0rDenbCqCowWi49CPCyCjnsGkmo8uCxJsYaLnsVtFscMoWB989PPqzhTVEc Pm+Y2DC6hYDYvZ/ArucL8lQKqE2BzZ0UUWgLiBB8yjpUEx5EekjrUyAu8KOuhi3q ghWPlzAmZHM/iXIaPKNtdzKQ2qAygeOnwvRU8o3jyZqX42gcJr42CY0xLUI39A1X qhpBLEcSbBDtViy/Ms+ZSP2Bq5bfHEFhMbX6Y+U/I6sVvEtbE5cRQbLjk+KNDRlr ggfcFUhXankalobyR7bDwzoP+wDrl3LD6+uTEJl50astDDj60No3qVOXupsz8V4r un2VD9sIymxQe96/4zAyr5oVpfVaNCj5nuyANofCElRkoZEYVF8M1R0pXHlsMzwV a+4yWFN4NKLRw761n1kTcNWoMvPi6dhFzI2J24PpVT95XicvFRVQ5EFnxMEhe3kz SiWfj2bZmDdXhIYTH6m6 =LPkn -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wzo3l-gw...@franck.debian.org
Accepted wordpress 3.6.1+dfsg-1~deb7u2 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 12 Apr 2014 19:49:18 +1000 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u2 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 744018 Changes: wordpress (3.6.1+dfsg-1~deb7u2) wheezy-security; urgency=high . * Non-maintainer upload by the Security Team. * Import Wordpress some changesets from 3.8.2 from Jessie to fix the two security issues present Closes: #744018 - Changeset 27976 - CVE-2014-0165: Wordpress privilege escalation: prevent contributors from publishing posts - Changeset 27976 - Changeset 28054 - CVE-2015-0166: Wordpress potential authentication cookie forgery - Changeset 27873 - Hardening to Forward pingback IP during pingback verification. Checksums-Sha1: 5ba7b92f753fd90422156102143509a510c40f7e 2319 wordpress_3.6.1+dfsg-1~deb7u2.dsc a505126b819acccbd8ff0bc85266ccaeca5242c5 5155140 wordpress_3.6.1+dfsg-1~deb7u2.debian.tar.xz 53a351c215bd055eddb6569a3ecb588282799212 3198710 wordpress_3.6.1+dfsg-1~deb7u2_all.deb cb1200b9c4101b004058de41462ec2a4fcb57fc6 3740264 wordpress-l10n_3.6.1+dfsg-1~deb7u2_all.deb Checksums-Sha256: 49bc5e65a499bdf563b85afce19cba450dfa1d74ea4debdafc824cb84cf883de 2319 wordpress_3.6.1+dfsg-1~deb7u2.dsc ad281b35456f45975df026a3a82776034a06aff59e2e85dae28ea5b28370cddb 5155140 wordpress_3.6.1+dfsg-1~deb7u2.debian.tar.xz 119dbc08bb5020e50d24b0a5888344735fc2733e2102f57754016bddea29612b 3198710 wordpress_3.6.1+dfsg-1~deb7u2_all.deb 032ff56479b4ef69e48fb4185914e79bce017e5e15fc794661f306d2c33db3aa 3740264 wordpress-l10n_3.6.1+dfsg-1~deb7u2_all.deb Files: a0593b8bab7878e338da82cb9988dcf7 2319 web optional wordpress_3.6.1+dfsg-1~deb7u2.dsc edb3872eee6d246f8f28a7fcea689ef3 5155140 web optional wordpress_3.6.1+dfsg-1~deb7u2.debian.tar.xz fb7c0dfa09e282f7c91fc421c531fc7c 3198710 web optional wordpress_3.6.1+dfsg-1~deb7u2_all.deb 44015aed62144f667d2f67ff3ffe0acb 3740264 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJTSQzQAAoJEDk4+WvfUP6llXoP/0aM7i0yTq3qInCzNLGaVS9l FvJZGM4WytHccdRD11U6+WJQAte2UjExiYuaKp8liDbUHWoChDtGtQOmAzlFt0of DGBHIbItAYF8CAvl234FkBiqGflwSOM5eU2dJtxd81YWckwH+DgBIRxC8RQ8bRRO tnxVUk6hCrrD7eESFc/FPD/dFdXxJ1oH/qowx0A+qXxJuSX84ivJswcXG5e2vpmx OgL3H0TEQK3MuMi2F1Pnl4rX6ZRSUd1z8bAywgjavSzrixpGibUEXmIeR5ZYEJuu 1xeqzu1CIneXBfBaGOeA21xV0R3pLM1IeNew9L8ab4FFw61ewL5n4r6zZaqw0ox9 YnXBqQhq59liezJtLrug/TkMdp0Mi42viO4P76SwuBep1jN86lACkZzbb2VsPjhe PluyQBeanH/rx1iVwfm7oleGxcsfNlEY1rsoGoQpsBWs3hGXLYZ7/W1hjhI13dqV R8fe644gVboZY6HRq2f6oOGZykobBsvqZANXgoeHTw1VKtsiSL+DZ/2cUwgar+V+ PuBAPlqdATA1fBqYzELKjXKIBRoPrOlIOrt4yZH3FimfgJIUhP+EmJtyleVIgCUm yD+X6/wTAPj1H3QMU/J8JZxzrSYTwRPkdASuZ/jMV04dswzD/keRRQFG7C0xWnKf 1DFfFfS9RKAvduMH/2vu =jbVF -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wzo2w-c3...@franck.debian.org
Accepted wordpress 3.6.1+dfsg-1~deb7u3 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 17 Apr 2014 19:37:47 +1000 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u3 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 745030 Changes: wordpress (3.6.1+dfsg-1~deb7u3) wheezy-security; urgency=high . * Non-maintainer upload by the Security Team. * Import Wordpress 3.8.3 changesets to fix Quick Drafts that was broken in 3/6/1+dfsg-1~deb7u2 Closes: #745030 - Changeset 28073 - Changeset 28114 Checksums-Sha1: de8201875d0c045d4bb7a4fa168bf95fa070081a 2319 wordpress_3.6.1+dfsg-1~deb7u3.dsc a41ee9cce08bfd2fbad5f0fac3efac6f2b79a105 5155892 wordpress_3.6.1+dfsg-1~deb7u3.debian.tar.xz fd2d06113fa6a07fa27bb02bfa5543d7d2a60f3e 3198960 wordpress_3.6.1+dfsg-1~deb7u3_all.deb 213f8526511fec9084136c1a7ebf2b2c3547a1a6 3740768 wordpress-l10n_3.6.1+dfsg-1~deb7u3_all.deb Checksums-Sha256: 1287d0954990cfc74b0247decbb3e21146e95e5ac6c629acf85adf422361c5a2 2319 wordpress_3.6.1+dfsg-1~deb7u3.dsc a74a40daece5efc5faed14d31752df9941a6991d8621244ecc5306f64f4b00ab 5155892 wordpress_3.6.1+dfsg-1~deb7u3.debian.tar.xz 61d744ca981a16f77a4b859ba2ce968463bd59b35178af83096cdc1798a8bd10 3198960 wordpress_3.6.1+dfsg-1~deb7u3_all.deb 232e165f89b779718ee7ee930e2208996880a0fae05c306ff01c0b11b6416de7 3740768 wordpress-l10n_3.6.1+dfsg-1~deb7u3_all.deb Files: 014cdb721cedbfcfacb0670ef19eb3cf 2319 web optional wordpress_3.6.1+dfsg-1~deb7u3.dsc a9621e4c447d1eb294e7f28b8e432460 5155892 web optional wordpress_3.6.1+dfsg-1~deb7u3.debian.tar.xz be518e23b0572b522530c869014dd897 3198960 web optional wordpress_3.6.1+dfsg-1~deb7u3_all.deb c624b7e2b5022ce3d784d9542ef41669 3740768 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u3_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJTT82VAAoJEDk4+WvfUP6ljDsP/i3/FPH5hDphDbz5uq//95Zs nbg640S8QJjlIcAsqkP8SNpL9VsiKYrGd5IgB6P0BU72O6js1yxMIHZOiuB48SvZ ejV8vtqNrzgZIOwPp5gBKTigm8XpCWD8heH9vOk0ndfXsACg4tNJYZfh3SopIoKe KyDjRlKeFa0gatuuVATbWR1U75SXNosCdJR2e8Oo5nb15IhQH3/ZyR8or84ee7ar ezD0fZcxyG6acPtbkJJEHXEoWWoEGUOMv3cwY/rZPgbusR7Lq1W4QTFS4Q9pHflg 57kAv3HdDCqJjmADbkKrNj+zUpezdmGrkJuDCiwnDi3EHdiCuZ8KRdRVXCj8M7XF D5Aw0g7tprpH1rZvYT4bNSyudXFZ+G43mhQpHZ42R5NVBAR7tLFIhLMRLXu4eQJU SzcTkvyRtCovRWTLeaF0HyhoMggz3STtWXYdUAYHfIywH0KNIT4P4mX4E3yz6yRq PyIuRXEpTNdw4a4k8IhtoU8tLsxN2v8iGpYEcg4TZdKFM621P5W+1QwWmKED1Q5/ PtcNlIsjfJUNiBHHIKuVaRZJ5dmoeQX5K6n3prcnE/RtuHMS73qfleSGR04mJFcd KhrBrQFpcOU3EhQeq39SONmfm8Ed7tf6PrMm4VlCpcKD01WU80Qqa/qjnd+/tJNb XF+64d4wnrbA91ZSNq8r =bzo5 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wbekb-0005bq...@franck.debian.org
Accepted wordpress 3.6.1+dfsg-1~deb6u4 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 21 Apr 2014 09:47:09 +1000 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb6u4 Distribution: squeeze-security Urgency: medium Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 745189 Changes: wordpress (3.6.1+dfsg-1~deb6u4) squeeze-security; urgency=medium . * Non-maintainer upload by the Security Team. * fixed dependency for libjs-cropper Closes: #745189 Checksums-Sha1: 9460fb117425e51db72023447421608d9e92dd9c 2109 wordpress_3.6.1+dfsg-1~deb6u4.dsc ab657bafa2122632591a055c725a4fed84a427fa 11002514 wordpress_3.6.1+dfsg-1~deb6u4.debian.tar.gz 6d6e88cbb4410bbded6cc148dcc89fce62fc3e70 3992870 wordpress_3.6.1+dfsg-1~deb6u4_all.deb 7be1be8c527f95a79e67db7a4668b1776b3fa1df 8876948 wordpress-l10n_3.6.1+dfsg-1~deb6u4_all.deb Checksums-Sha256: b37c7422496ceb3d7e047e2ddda6f7c3d263984a188e5b91eb2d1c23d0014d4c 2109 wordpress_3.6.1+dfsg-1~deb6u4.dsc 445803b7fcbb5293533fd11cd7239157cc29e767b88a79ebad4ebbaf75f45785 11002514 wordpress_3.6.1+dfsg-1~deb6u4.debian.tar.gz 8db049fc02ab895a928f437ebd4dec77e9a58eceedf94f459a2c05ccb1ad1e8b 3992870 wordpress_3.6.1+dfsg-1~deb6u4_all.deb 6efdca9b128f951bfef481595621173c362b3ba0491b32f7ec1ec733eea68980 8876948 wordpress-l10n_3.6.1+dfsg-1~deb6u4_all.deb Files: 157efa6247c9e626f245622128a42235 2109 web optional wordpress_3.6.1+dfsg-1~deb6u4.dsc efba1a749e0db27c34f3832a41e60f71 11002514 web optional wordpress_3.6.1+dfsg-1~deb6u4.debian.tar.gz cdd4972572d486378ee1e8fdd0a3198b 3992870 web optional wordpress_3.6.1+dfsg-1~deb6u4_all.deb b2784a53bf4f1dd74ab030b9d049a4eb 8876948 localization optional wordpress-l10n_3.6.1+dfsg-1~deb6u4_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJTVF0fAAoJEDk4+WvfUP6lBvcP/2TRj688FkDn9nxXyRIOdJyz QcvjSJ2VWHbkowOdKzhGA4qwuLzr16ZDsk+xPm58hzJk40dNCjj9mV5Ds3eAFTHv bkim7sYQnXtjsntI5bSQnPsLJ9G6hfGSKaMc8Y/GGejVtRVtPkcnpD7Mx3AhIqtm Nh9ZMLEI1ARhgDb7GkMwjyp3efP1N0YiPYnOQjKw3e/Hmymzhv8wAm97/IWit6Qs qHKtPaIGzY8wN/L4Xlb69wXYPWzgw2PkWKuI2BYHPZU84TPUsa3pIg4UeuBUyhrL wE0DnWTSKpn1ksCGfQ2tfzL7KeijkuKGgQ6ldhCXoa5eAf/oig+nCbOYO/P9la0f 30RUpZH52CNOjNym2LsAsCpnzYEErHyPnGUbSLPX/1vk0nA3/cMJPzOYgTcXLsn3 nDlVpHKPMEcisAuOTWNXqsKSFYjYtKWp3KD+Vd38PjX6Acmzf1GieTXbNfJRetax LtlNKeWoXiDZN9jF835j2wPr2ZPRCtu5BI15tnMdqshDF/jPfPXXcP3HJ4skPOuW p5yKJVQzovV6csa5KFpAOR+d1RqvMBsU0fSHn9nhP02cNdEPP6R+AMG5DLyD40mp V/h17sskJ1ipSuvo4CW/llOrBPiU4nxi2/K1u1fIkcHn6TVxQgFlm5XWXGeWWeKy PRGXSlIjyg/jZ86Lrf5r =h57g -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wiajg-0002xb...@franck.debian.org
Accepted wordpress 3.6.1+dfsg-1~deb6u3 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 17 Apr 2014 19:37:47 +1000 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb6u3 Distribution: squeeze-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 745030 Changes: wordpress (3.6.1+dfsg-1~deb6u3) squeeze-security; urgency=high . * Non-maintainer upload by the Security Team. * Import Wordpress 3.8.3 changesets to fix Quick Drafts that was broken in 3.6.1+dfsg-1~deb6u2 Closes: #745030 - Changeset 28073 - Changeset 28114 Checksums-Sha1: b04ce5e6a463b3aa7181f3910c56a1cb559ba96a 2191 wordpress_3.6.1+dfsg-1~deb6u3.dsc 7bf6a65cda767544f4fd6b8cd09cb54e284e0346 5158652 wordpress_3.6.1+dfsg-1~deb6u3.debian.tar.xz 3f08fd62d1995974ea5fab393e2123ae26499006 3221772 wordpress_3.6.1+dfsg-1~deb6u3_all.deb 4f2b9616766828dabdde0ea66e17cdfd7927be79 3740446 wordpress-l10n_3.6.1+dfsg-1~deb6u3_all.deb Checksums-Sha256: e17d13fffa394e77a64a02bd267247421a5c40bd51e636cdaae58fa7bdeb6725 2191 wordpress_3.6.1+dfsg-1~deb6u3.dsc 9fd8643d181642b5340ad08ba5b59d3d91f1fdeb5a37b76c30a07eb5ea43 5158652 wordpress_3.6.1+dfsg-1~deb6u3.debian.tar.xz b56bb7f4f941f3acb4690cc15cd076884119ba45c893ffc3efb96d87757263f4 3221772 wordpress_3.6.1+dfsg-1~deb6u3_all.deb e2cc57a6166be5e9e41b3b4cbff1d3ff23f2a07675cc90e5218cd26daec48405 3740446 wordpress-l10n_3.6.1+dfsg-1~deb6u3_all.deb Files: a9dd7fc8b0db219b5b5ddbed398bb85c 2191 web optional wordpress_3.6.1+dfsg-1~deb6u3.dsc 4748dc4e3389377a230193bea7ef7d61 5158652 web optional wordpress_3.6.1+dfsg-1~deb6u3.debian.tar.xz 809908166f9af93d3ac2b9ff24b4a3bb 3221772 web optional wordpress_3.6.1+dfsg-1~deb6u3_all.deb c52946d8659b2af9c6d99e0c4239ba3a 3740446 localization optional wordpress-l10n_3.6.1+dfsg-1~deb6u3_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJTT9O/AAoJEDk4+WvfUP6lhlgQAI4x9yWhbP9yrUiRUKCEIgSY EfzGfKvrGF4kViaKtH5NwUjtEbCv84on5pHz1X1ikv6AjDdfamTcLwhRYLj2RoY6 r42qpH/N4TTIKTBUw3h0SdTGAmKlh2NOSL7UE6MfuS8a1scl6p3e+vKXpKvT4KZV qv3yxarlkJH1f1X3lWU5n3fYYrGzriro1R4XCGbaQUoByovOTr0WomGBadFI+OPm qauq3SPGOEtMMhMbCpP/NV55uk/8QsRi09do0n8RgFMAz9VOmvWmIlkLersk1SLP lYm4CRJrG0n1d+r76MFA6Aj762zeZWd5JQgjP5WybG4OCO5jXXjg/LX6Ej52rxSq t8qprY7r9HOHSWVeLps/fyzz0xbpGT9COCY2G57Mmof6nXSjHkhn3gt7T4xPmcCZ 0AAYyFo0KCRQmgHbwX97v9n8du4+BEPz/fIZA+/zI04XbGKzb01yp9unAzjjNq6S Z5NGdwGA3ajg/ZoAggHKCEZ6sIDpuhpXN3voDuQa0cQpxP0/59aULuR3/lNnsEEf 88dCpQWLTrvdEmVsj2FFnwd+7z+xKTU8ultJY/GSZAbj7L+PlAVmSoiVh7tTFzM8 FSv6BTz9CxGGb0bx8QAygOlpTfPfT/5M4sdKb024PjwvJjfLCYO3DEIxPf2t+mje UJbSwwQfLDVeLCDzRR3j =ee1w -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wiajf-0002wr...@franck.debian.org
Accepted wordpress 3.6.1+dfsg-1~deb7u4 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 07 Aug 2014 22:42:41 +1000 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u4 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 757312 Changes: wordpress (3.6.1+dfsg-1~deb7u4) wheezy-security; urgency=high . * Non-maintainer upload by the Security Team. * Import Wordpress 3.9.2 changesets Closes: #757312 * Changeset 29405 - Ignore entites in XML-RPC * Changeset 29390 - Disable entities in ID3 * Changeset 29384 - Constant time for wp_verify_nonce * Changeset 29408 - delimiters on nonce * Changeset 29398 - Escape late in get_avatar Checksums-Sha1: e2780d2bb101d9b84143d35e235f1792e3f14457 2333 wordpress_3.6.1+dfsg-1~deb7u4.dsc 6390491d6b961450df20cef2e12de255bbc44cf9 5157672 wordpress_3.6.1+dfsg-1~deb7u4.debian.tar.xz 0ae10404055d32309b8d3e5662418a24dc4c9e6c 3199578 wordpress_3.6.1+dfsg-1~deb7u4_all.deb f4bb505cf10cd174a18362ea3bcf05e78b66d825 3740082 wordpress-l10n_3.6.1+dfsg-1~deb7u4_all.deb Checksums-Sha256: b231b1d8fd35809a648f89f252e60b9496ea5afcac1c2a273a1a36f8c77cd964 2333 wordpress_3.6.1+dfsg-1~deb7u4.dsc 7d751ca5c8731a11302c296ccc49e2f791d41dac86435a1dde3090543a27a05a 5157672 wordpress_3.6.1+dfsg-1~deb7u4.debian.tar.xz 5a49c0a90e79fbe9a699a154276ed313e9053994a92fe0d95c9005c88f37f520 3199578 wordpress_3.6.1+dfsg-1~deb7u4_all.deb 1fdb498ef189397f8fcae4430a61b781a2b6ab7271950a9d60cef1d782f78613 3740082 wordpress-l10n_3.6.1+dfsg-1~deb7u4_all.deb Files: 855bb5a3d6f293345c10b68d3ba12008 3199578 web optional wordpress_3.6.1+dfsg-1~deb7u4_all.deb 6fa3a5100ab2a7a87533ec7ff6fe4b01 3740082 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u4_all.deb 13f4355918d8f6cc55903f29c010d444 2333 web optional wordpress_3.6.1+dfsg-1~deb7u4.dsc ce48b38db5bb2148b32c1e7607faf4d1 5157672 web optional wordpress_3.6.1+dfsg-1~deb7u4.debian.tar.xz -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJT5IhPAAoJEDk4+WvfUP6lumkP/jI41a7TkFVDn0UDVB5PCK8/ zkzd+8vy8csxAqUHAkrDNwaJmAxPB3zzi8PCfaoY3q/1QJpAr4I32awthKF4MqmN zdLH7Pgx8INN3XIltRowq/7xjO0LwfLgJe4/t13hi5zVVIZdcDqRW99pfwxXd/k9 G+yDHzGUhOOYZdqJTVehi0w5WASSbvGPJry6pcQjFS12OGS5AM5zZflrL/rPVqxB JMfPOfAXBzLa6Dxr+ixmWy3nVz90AUSFLa2s99aruplIUJ8se8/YG9r16mHJ6SBW n3cEnW0EmDfTIAcjL3ZYb4uqTtddw5jkF/7TbydP3D9RdjIf2lGFFAdZZ2FJwvlh nQyRwj0fv2vWYnFtpfs/5YJiHECFWlDhsYrB5vp4Q4K9Wo3jquO46CdJFk4BaLch 7gMN6MuWKbkxgqtTmWwtTHS0fs5vKOzYFMjExwfMs0WAhID89La66bUPMjQIMQnv VVBCFnG+ce7vZROaANUCY3OkgEX9hfhzktezUd+OH4i7dT7O17u7SkHtL5+MeWgO ffH75IJgpKzlN0N1iBXXrRwUs5t0qO8VVGMkyWVl6TT6XxeiUMcujWaNlDKuC9zV +PAgV9Rqrg0KpPfEjUFPp9D2Vq7zkETQGtrucszQai+5cIL9F0W+00LfOY/oIZ+a 87v29ls7J7lFgRwfBTm5 =a0mT -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1xhkfc-0003k5...@franck.debian.org
Accepted wordpress 3.6.1+dfsg-1~deb7u5 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 03 Dec 2014 17:49:41 +1100 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u5 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 770425 Changes: wordpress (3.6.1+dfsg-1~deb7u5) wheezy-security; urgency=high . * Non-maintainer upload by the Security Team. * Backport patches for 3.7.4->3.7.5 Closes: #770425 * The patches fix the following security bugs: - CVE-2014-9031 XSS in wptexturize() via comments or posts - CVE-2014-9033 CSRF in the password reset process - CVE-2014-9034 Denial of service for giant passwords - CVE-2014-9035 XSS in Press This - CVE-2014-9036 XSS in HTML filtering of CSS in posts - CVE-2014-9037 Hash comparison vulnerability in old passwords - CVE-2014-9038 SSRF: Safe HTTP requests did not sufficiently block the loopback IP address space - CVE-2014-9039 Email address change didn't invalidate previously sent password reset Checksums-Sha1: c20253a8fb57bbb7ee21b02e45a56f4b72df6845 2319 wordpress_3.6.1+dfsg-1~deb7u5.dsc e7d8a19929661cede1cc16952b4c837f0cc66af6 5248764 wordpress_3.6.1+dfsg-1~deb7u5.debian.tar.xz f74318f890320346775b3cb11a907ccd3a3c9046 3963774 wordpress_3.6.1+dfsg-1~deb7u5_all.deb b95f473d2c20d20d21413733bd1215d06297fc7d 8871382 wordpress-l10n_3.6.1+dfsg-1~deb7u5_all.deb Checksums-Sha256: ca1357404b89b5e5d9062d658bce22b1d86d1c385c8f0ab8318435ad8abe1545 2319 wordpress_3.6.1+dfsg-1~deb7u5.dsc 4ffaeaf4766edd68478f8a9e2d6aa5182a6265b1c79ff27525651b01083503a0 5248764 wordpress_3.6.1+dfsg-1~deb7u5.debian.tar.xz ee286acae3ee7280507b23bd6d9218b61023ede2349ccc9a865624b3cffb77d4 3963774 wordpress_3.6.1+dfsg-1~deb7u5_all.deb 623cd45b8c1c20976cf84397cdc376babc7570b94b5bfc3542cc918cd03bebb6 8871382 wordpress-l10n_3.6.1+dfsg-1~deb7u5_all.deb Files: afa4c48ad2294d72638ca3fabd3451bd 2319 web optional wordpress_3.6.1+dfsg-1~deb7u5.dsc 216db17b0d13b2c82243c79726bc2a9b 5248764 web optional wordpress_3.6.1+dfsg-1~deb7u5.debian.tar.xz cc1201f346a9a2d39f2b60cf498df130 3963774 web optional wordpress_3.6.1+dfsg-1~deb7u5_all.deb 518c9bc812ce553515c4203421fbc85c 8871382 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u5_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJUfrOLAAoJEDk4+WvfUP6ld6sP/RfDjF8LwaXJCPIUxtFV4XxM 6JUspwrpSGFklbkHbSd9qFEKb/9FK1pcSX5Ptvv/R6kAZTB6J9eLdwxR596xBdAy DqCwX9X1Chb30ricjh6AOvfloDyY0y0MCkuZUAvm3aptzfST9vhOZ4W+b5ysWBqX VbiZwi0aoMDJIkpSane9ItGwILt6469ZKXXZp2zXk/riDGZnepAmXC3DMbBSSzOa aHI0u4BfgFUBoHB+Ne7P3CVp3JFp1BdhQ9upDZ/HPY0QWL8NSlibaQv3qyjkkovj G6yc3g2I6W6b2H+PFj7HMOvgN3n/CgKtoLgUT6uU6XkwpP2LzmGfrJaNWYoiL3OK syhSLFAgsijaaXiEZpYr1DMumcS0mOgYI0FVF64r8I66LasBVAglQeRz65GsL/fs bC3LuTZPbT/qzsLJeECqNK9bplY+vyUF33jaybNKvb4BAixQfHqXgyJVSD4fP2Y6 DS2WTcLq4N6wAB4cUuxXrQoXyDBX67ZC9JY1sKOAW7WOOm5+6Ud5+eal/Wi4f0lj 7a0RoqmFkwE3gujBqcOwdtu1zQsIbliOVi0alcLlMTnbdWqtdHgmonNKGYg7UQVn S9j4+qxcZYncwhHncRVosdcvNv1zLVEgPRcegNH06dpQtWCZZ6rN92aDhFYx6SXR nwVI5EqIQyaFgh4GZd94 =O05/ -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1xy0jr-0006us...@franck.debian.org
Accepted wordpress 4.1+dfsg-1+deb8u1 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 02 May 2015 12:59:53 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 783347 783554 Changes: wordpress (4.1+dfsg-1+deb8u1) jessie-security; urgency=high . * Backports of 4.1.2 security fixes Closes: #783347 - Changeset 32163 sanity checks - Changeset 32165 sanitize order by - Changeset 32172 filename check - Changeset 32174 multisite change extra checks - Changeset 32176 Dashboard escapes titles - Changeset 32234 More WPDB query sanity * Backport of 4.2.1 for security fixes Closes: #783554 - Changeset 32307: XSS for long 64k+ comments Checksums-Sha1: 94a3a76c5053d9e2c2f3c0bceced2206f490df45 2533 wordpress_4.1+dfsg-1+deb8u1.dsc 0b105e79723c1f1c16764eb98122ed426f738940 4749996 wordpress_4.1+dfsg.orig.tar.xz b38521fe49f31729c6c1043db02321dd24acca2e 6099980 wordpress_4.1+dfsg-1+deb8u1.debian.tar.xz 31bf2fc2775ca23889269eca22dd4351ff4c97fc 3166172 wordpress_4.1+dfsg-1+deb8u1_all.deb 3b0378f7e1507698507999f040be00567417eef1 4236442 wordpress-l10n_4.1+dfsg-1+deb8u1_all.deb 59746a6d72a28439e4480214d980ca115f1b3fac 507016 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u1_all.deb ab210a7d4cd1422949efbb8e4fbbeefccf6a5847 802872 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u1_all.deb d198be75f96414f176d169e79cdde3bbfe475cc9 322378 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u1_all.deb Checksums-Sha256: 41e8a4182c01cef29eb8dacc45ce936f7b8695e8d494ec20a7b517b98a5d1bc7 2533 wordpress_4.1+dfsg-1+deb8u1.dsc 11ca9ce2f5b05866df9521a50b8be22ac2315f652aa95ba49bdb202c5dda4954 4749996 wordpress_4.1+dfsg.orig.tar.xz 121586a27de1bae14d9b49716b2f273b9f6f35cce92e8d206d4ae1fa225bd0d0 6099980 wordpress_4.1+dfsg-1+deb8u1.debian.tar.xz dc228c41d60a19e7a82d75ec585321d880f464fb4fd8ee57ff6b7b05b894886a 3166172 wordpress_4.1+dfsg-1+deb8u1_all.deb 778e3ae0816a1ce0687d7363496fe65072d6c8e34d7e774914e4741962762e64 4236442 wordpress-l10n_4.1+dfsg-1+deb8u1_all.deb 7e04ac07f14ca4808a4146b24f3187dde246945c4c25b7b06567553e7ccf4ae8 507016 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u1_all.deb 674eaa355cb34a6501cf36695a6933c4c60caddcdb8a1819237b52ddc80028c1 802872 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u1_all.deb 5bd200b0f06710ce4f9f89838dd20204354bbdf0ce4bd033f4729ccd618feb38 322378 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u1_all.deb Files: d852da545618a53ee46ed6ef63526e6e 2533 web optional wordpress_4.1+dfsg-1+deb8u1.dsc 90db367f6588135c80a22a91e1c42fcd 4749996 web optional wordpress_4.1+dfsg.orig.tar.xz 47bdcf156fd8464b72721416c270e150 6099980 web optional wordpress_4.1+dfsg-1+deb8u1.debian.tar.xz 0cd986a2a5e9d08e33c475b6e7db5640 3166172 web optional wordpress_4.1+dfsg-1+deb8u1_all.deb a4627b36843ab6af180e6c1e1e8621d8 4236442 localization optional wordpress-l10n_4.1+dfsg-1+deb8u1_all.deb 5e154ee5c3d36d5eccec371cd06d8c50 507016 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u1_all.deb 024aa861b06e201811fcb910a5b4fde9 802872 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u1_all.deb 20b7a0629ebff373db130495aa86e8a7 322378 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJVREScAAoJEDk4+WvfUP6lPPsP/3Y49JclYT+acUjYrUXtyzBm bHbbzMb4jH+SiQ0waJsGanSSYeJfnpCYxe8Sle8L9uGZDaoc1UvdAePYx0E+UqS5 qPy5R2Yi9viEiYCanER3ko16Ymbfe6XSzB/BGDYHQFQ6ez9VVcH5L1hcoyF3uhds z2c1vWFvYAQeiKI2Z50WRuyx+AS5nQ0cVBheGo09vYlTZ4DljPWkul5UHJhu5UqK Ps2YvT62VeHW9MMwjgUJkBVhqEG9gWprRaG9d7xd8IxJj7HU2iFoahdcQA3svZyB ZEj5ShV2wrOEXJxb67suQ4/D8Sa44aX5jNuBYah4w2drMZgWhMIfwHnHYH7sm1R8 9qN160aTsc7do0EvmHkd9wfmFPf4GvBsrhstwgHeIRd8IM/zs2Q34yesMJpSrPw/ +tgUoB/Dbx5/RHPKqxUztZfMGxdxjrAqL6/mqjhacMH+VWRIZmkx/UblSiKknxL9 Lu4exW/FCXBQFo8cYumHP9mbFn2i8/jy4Lwr3GONhoLNAFsXXgq0DingY/ilRcvF z0YYR7YzlwQkUUd6efEU0jpkuxn7qg+0fWYYy5FIBAmG05X98c9+dJD04246vPhI TJ50vvgqw/P6Mfa/M3PbOHp+HFJAQUTD0bc0agK/o6janKrF88DmVDMTHbgedBDb SNSJdwcwpzYvft2LG+Ld =4agW -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1ypiob-00085w...@franck.debian.org
Accepted wordpress 3.6.1+dfsg-1~deb7u6 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 02 May 2015 14:04:44 +1000 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u6 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 783347 783554 Changes: wordpress (3.6.1+dfsg-1~deb7u6) wheezy-security; urgency=high . * Wordpress 4.2.1 and 4.1.2 security fixes * Backports of 4.1.2 security fixes Closes: #783347 - Changeset 32163 sanity checks - Changeset 32165 sanitize order by - Changeset 32174 multisite change extra checks - Changeset 32176 Dashboard escapes titles - Changeset 32234 More WPDB query sanity * Backport of 4.2.1 for security fixes Closes: #783554 - Changeset 32307: XSS for long 64k+ comments * Changeset 32172 NOT applied as bug introduced later Checksums-Sha1: 6f54cad28fbfe673f9a319fd6d78ef83f893df77 2319 wordpress_3.6.1+dfsg-1~deb7u6.dsc 7119aca4b8f3f4c8e84c1234280fbdeefe4d3d9a 5257884 wordpress_3.6.1+dfsg-1~deb7u6.debian.tar.xz 8271203fe2e555f74950b6b35ee94a367b6f7544 3968708 wordpress_3.6.1+dfsg-1~deb7u6_all.deb 7402a1d88ade89f5f582fce96841c92db251486e 8871404 wordpress-l10n_3.6.1+dfsg-1~deb7u6_all.deb Checksums-Sha256: 77d15ca65d639d01c98cec03ae92232c7bc6dbd9aaf736cea9e9dc5f0636d0db 2319 wordpress_3.6.1+dfsg-1~deb7u6.dsc b9f205ad169ceea7d9103ee7dde81eefeb5bfea606226802cf20d2a3ce855ee7 5257884 wordpress_3.6.1+dfsg-1~deb7u6.debian.tar.xz 8bc3740186fcedbaa66f840dcf0b8c69ca17b973517d74301682a5d9441c7437 3968708 wordpress_3.6.1+dfsg-1~deb7u6_all.deb 05701eaf98b1961ce27168bd7d8d5230b5f1dba9d5402d410ccb28fdd872e0ee 8871404 wordpress-l10n_3.6.1+dfsg-1~deb7u6_all.deb Files: dc9375edfe7ee0583e4d4457ade2b3ce 2319 web optional wordpress_3.6.1+dfsg-1~deb7u6.dsc b1725a153d55e852c8c37c0cf1069907 5257884 web optional wordpress_3.6.1+dfsg-1~deb7u6.debian.tar.xz c1038f5f72ce53101069929d9794af49 3968708 web optional wordpress_3.6.1+dfsg-1~deb7u6_all.deb 2fc7ea8214aa14c942114d285791ab30 8871404 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u6_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJVR2LAAAoJEDk4+WvfUP6lua8QAJQ4MjtNcg1wEYJjjMVEWhCF Mks8dhcQu8YKx25xbqub9FqriZjnJPPtax3OQ/DuNzjDQytJJqbv03n7rT8/eK8V 8YO38KYxrMD6jPp40YGpiq3oMnwpVvoxrzqQ31vNR0rdf4hKf1iKYzEaonVOn9iT f2tqNYAXMcF9mmoKURbZPIeZMUUZXHBhWv9ZSIX3VMVDiYOwNN5acVTRmPD47bH0 /3tSHlG7oOd2KDttF8lrm94Ukh5YA6/dQhfgJsx5Q0umoeMioK2eLSg2B1YULuSq ycVg9PTG/JV6bbP9CwCluRYOUvR/dWS5+QQY0dq6GuooAVcBBtYI0cpxKet/3J9V dnOkS70Gon/PMbtUnhtEpgG6HSZr18B/hXLE0THZf6JU+HPu4VZzQvN6OqSfhXvk PVeWlhk97j0FLUcDeMwlpusu4tfXjR4gkHWk0V5tWjRdgDp3MUMmufdvVaFIFmot I0Jaeco/dUfvI0tihCfUT4pWAw7hEby8SCB5qfha+5mtbwxjlAqmAcmB/HY54XdI /XIvm23X0FeUrqm7jIMvEuX+HSZKTA3/V7Y5rwCm7PMAu4rOutYQSUJ8Y22oczgA 0RCj+BjQgBLwZ1gbKMudu3ukvMCluxEqXdNdP49CJ04jpQCQ8W2suFGKWXyylXOc nqjyA9VHcyRjim+fxhny =twUh -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1ypirj-0008ul...@franck.debian.org
Accepted wordpress 4.1+dfsg-1+deb8u2 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 28 Jul 2015 20:42:55 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u2 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 784603 Changes: wordpress (4.1+dfsg-1+deb8u2) jessie-security; urgency=high . * Removed genericons example files CVE-2015-3429 Closes: #784603 * Backports of 4.1.3 security fixes - Changeset 33357 autodraft perms CVE-2015-5623 - Changeset 33359 reliable shortcodes CVE-2015-5622 Checksums-Sha1: fe98f68fe75de7d52c88ec95aeff1236e243c8ab 2533 wordpress_4.1+dfsg-1+deb8u2.dsc 22c4ed3c605e60342822beba5ad0fddcd676ba89 6113652 wordpress_4.1+dfsg-1+deb8u2.debian.tar.xz eca98f6b30f39a48bab12fce21e49c477f291b5f 3169824 wordpress_4.1+dfsg-1+deb8u2_all.deb 361c465ad065ab11507a3ce064908730d35d8423 4238310 wordpress-l10n_4.1+dfsg-1+deb8u2_all.deb d373e3909f5046c19e81c541fd7900d2f61ad851 501068 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u2_all.deb 393a76228d4088415bd702017d991e830114d90a 800256 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u2_all.deb 48da8dbd11849b79c4c3b2b8368a1bce6a00779f 319916 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u2_all.deb Checksums-Sha256: 269b3f7c9153f2107b20c3e8adfce000a982a7ef608f28634a1faff456ebe611 2533 wordpress_4.1+dfsg-1+deb8u2.dsc 8b2bf34d41bde412c4b93586447cab2e63208eeff3646c025cd483ebf30fcbc4 6113652 wordpress_4.1+dfsg-1+deb8u2.debian.tar.xz f72ddfb53cc895140fba1a045a9fce958dc4d57edb7660b2b2dc64b33b000842 3169824 wordpress_4.1+dfsg-1+deb8u2_all.deb a7ba348823c8d0d363d3298a9ffa489980950f420158efb76d3b385693fd4ea0 4238310 wordpress-l10n_4.1+dfsg-1+deb8u2_all.deb 8efe5cab1125704aff4a3dd523367e4c70117690ce16be52f3d082fa10670ab1 501068 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u2_all.deb 18e623281f00b4ca2a12349a2733d364363d6b5a4a15934123dc891b4b85fb03 800256 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u2_all.deb 58a30a1d257a068ee1b676ce4e8258a898e69da9e93524aae6ead7f3adad 319916 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u2_all.deb Files: dab4c129b5ed0adaa0c80b50c2e257c7 2533 web optional wordpress_4.1+dfsg-1+deb8u2.dsc 8ffd389a55ec2015b202e76611fb2666 6113652 web optional wordpress_4.1+dfsg-1+deb8u2.debian.tar.xz 6af547210bc79b5b2188524b3361adc3 3169824 web optional wordpress_4.1+dfsg-1+deb8u2_all.deb 6b44bd1626dc050d23516b9d40afc070 4238310 localization optional wordpress-l10n_4.1+dfsg-1+deb8u2_all.deb 83e2a22f4037ddc6f1259edd836bd5f8 501068 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u2_all.deb 9f255291f04ac6c33e74c8a3b00364f6 800256 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u2_all.deb 7f14bbe819865451fdc28e017f7b99a1 319916 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJVugpHAAoJEDk4+WvfUP6lxVYQAJNvOfN/hbF4Kid1k1pEnuIs Qw70uUBcUlmjdNm/PvYYs9VTfgB38/1qEVyB6RCj61oUeRA543NeyMWyv4aVE60g HSrrJbG4M944BbSrMGpKKS2ZZWtO2OtiWTD52Rlvyb2ygHYStg+iO67r2LhU0Qdu zZrTdWp4PiMXhPUn7U2l68oEHHeFIbJne5svmw4NTF6HxqT5/gJ1r+wIziK2PXaY +fsYBmM7ohPSm9s7PhdV0GlD35vpV/nWDcWyKt1ty6ndR3uGw9uPGD2obBQ9FE9o Oizu2kV8/ccycsQp2EHKaVAhN7u2vymQ/cST8LYEDWGgHlSGjFguv2wkoYWD49QL 95CXbmDRX030H1C/hq1FnGyDXmJhp1n9mKWnjtg+dwH1Khy11QPQyIaJrYaPStNq FlmRocUECliujJHqjK/Xv+bb2Sh+PQFeRWcRvBomr5bGZE407vl01DUQAp68lJ+D Cbc8HAEmj4P7ePi5l5m79Jld/XCRF/swpyD/IxwKLsBAQ7xbeoDJa3ALWq6NKsOw wirqIv5P0WBXHuOr8i9uAZDGT+WjLuu2kcsBZUED19nnU6uAPIo+ed0XSS4K/IGJ NafARo+o5vZUWHLq37FSOcN+KsRjhJa+YIHIMxg2ssq5ftaU+eVnPt8vcadTKEc+ XTrFLmNMiZFe2zn8ym/H =GAcl -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1zmk3j-0006ha...@franck.debian.org
Accepted wordpress 4.1+dfsg-1+deb8u4 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 05 Aug 2015 22:44:20 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u4 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 794548 794560 Changes: wordpress (4.1+dfsg-1+deb8u4) jessie-security; urgency=high . * Rework changeset 33359 reliable shortcodes CVE-2015-5622 Closes: #794548 * Backports of 4.2.4 security fixes Closes: #794560 * Changeset 33555 SQL Injection CVE-2015-2213 * Changeset 33535 fixes timing attack CVE-2015-4730 * Changeset 33542 prevent posts lock attack CVE-2015-5731 * Changeset 33529 XSS widget title CVE-2015-5732 * CVE-2015-5733: Not vulnerable CS32176 fixes this * Changeset 33549 theme preview XSS CVE-2015-5734 Checksums-Sha1: f79d291d8ea25cd90919437fb9d1fecebc9768e4 2533 wordpress_4.1+dfsg-1+deb8u4.dsc bfdb4cc4aa0eae23804b1a8ee71f792c997d3d97 6115692 wordpress_4.1+dfsg-1+deb8u4.debian.tar.xz 4da3b3fcd173abcc09be8bffdc25f39cdc3f0c09 3169256 wordpress_4.1+dfsg-1+deb8u4_all.deb 07de63d883a9bbd8e503ca1fa4ec43b7e3e31a7f 4238128 wordpress-l10n_4.1+dfsg-1+deb8u4_all.deb 86fdf39805e883e07ea416ca00cffbb5f629f7ed 501258 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u4_all.deb 4498803c95deeac8a4662f3f434419722523e3da 800496 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u4_all.deb f229a6408dcdfc1809e7da6cf3f9ea920b887c64 320176 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u4_all.deb Checksums-Sha256: 590770aac3643a3c70d6760dea42a6f1660596b20ed4644565a00572d008d0cf 2533 wordpress_4.1+dfsg-1+deb8u4.dsc 402c78945d133e2ef70997bcea91ca4cca35c7205136d912a2bf991031208549 6115692 wordpress_4.1+dfsg-1+deb8u4.debian.tar.xz 919855f09b3939be8579f6ea1c0480fd67fddcff916ed94317584013942f7e2f 3169256 wordpress_4.1+dfsg-1+deb8u4_all.deb cb644fde09ae496095980675d12224c1333bdc6e18b68099439fb42951470469 4238128 wordpress-l10n_4.1+dfsg-1+deb8u4_all.deb a010c3ce64fd0255967a37afd2d02a43a028cd42ec9ce5d69c57e063a36916b0 501258 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u4_all.deb 2078722937f448efabe2755606ce3d337fa129f308b0fd99f42eab5c7c6adc2f 800496 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u4_all.deb 8dc189d0d2ac605b7e758836a7d78327a2b2e48c24aae520e0cc0d30062a9b77 320176 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u4_all.deb Files: 577746706fa21996e2f64ec47f3620f0 2533 web optional wordpress_4.1+dfsg-1+deb8u4.dsc c17f0ebbdeab000ac072f8e9d2f726bc 6115692 web optional wordpress_4.1+dfsg-1+deb8u4.debian.tar.xz 685383657bfab41737b032b350e22d98 3169256 web optional wordpress_4.1+dfsg-1+deb8u4_all.deb 407c02c26d6a7bd2d9c96a09465cdaed 4238128 localization optional wordpress-l10n_4.1+dfsg-1+deb8u4_all.deb 5537c91245c51ed0f2653a5f396d5cf4 501258 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u4_all.deb df1b7a1f1b49a6f1963a5ae6c39c7915 800496 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u4_all.deb 2b6800b84f2c25b53df56f80c605f67e 320176 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u4_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJVycsYAAoJEDk4+WvfUP6lEU8QAICteXJSBqZOrZtZE9JSn5T6 nN3LpWJJ7y8VudjblT1iDFNyMp0Gm9gtmf2VbFb8+q0Oh+RoYAvW5JdxezEzdGhL A7k1eBO16fEXSA4mv6JOWyRjWoVigfvlk2X/q4Q9iA5XC7Rt1kCv5gdFUsSqD9Dr Di68T+usZZA0O/TLa/PqYBoXIXKzXN7kma/udnf8hrVQpPuZK1Wq0J4ArkAHLQ17 RsiM24luhAzKgesifVwXEHBdSjlBB6vsxYiAoj8VbywZOMDyFlWeIv1OqJoMw3mE IATjDNOKzjAbSFtlY22vv4hX3fLMQI5HdgoTtxpPEicJqSZzbeXfMDGjvBTbmMuT kgqDFMsMNBfrdjQIhZRyHcIZKJRHDPxM/WddbwDq9vaKDxmuztAa4lmQgyGj24ps VJI8dQtSrfo1Ijcp0CCMPds68JIc+ApUQCxGO7s5GFisSDC6i2ftttKOi7+D1yv6 YGJ4nSnlynuTmaZOe1pYnj+D8/hRxFz+RjyoW8YOtxwK14/Vw3keA25mA/po5KeD ajD2h8vDAF04vBUhRoG36Tv3pgHa56NdbxflAS8DXoPlHVHwqwTkZTl8ZcyvR70M 6RE4wz279vZV/bq1JfZmbaCxJt+4uHahfRGNjyevGYQ3GJ+ucZ95NiHXhRKhG+fo 4vXruUoRZMQ24Ap0ahA4 =omlP -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1zphof-0003kw...@franck.debian.org
Accepted wordpress 4.1+dfsg-1+deb8u5 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 21 Sep 2015 21:37:40 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u5 Distribution: jessie-security Urgency: medium Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 799140 Changes: wordpress (4.1+dfsg-1+deb8u5) jessie-security; urgency=medium . * Backport of 4.3.1 security fixes Closes: #799140 * Changeset 34137 XSS in user list table * Changeset 34144 unclosed HTML elements CVE-2015-5714 * Changeset 34151 unsticky private posts CVE-2015-5715 Checksums-Sha1: 0cf085c043a7aa6d469ab46daa4a13a70ead59d2 2533 wordpress_4.1+dfsg-1+deb8u5.dsc 3d396436682c840f3914d530939e8140ead723dd 6116740 wordpress_4.1+dfsg-1+deb8u5.debian.tar.xz 09c1bbd8ba3f3c4b80727e383468167875dd3eb6 3169428 wordpress_4.1+dfsg-1+deb8u5_all.deb 19f1d1f7703d79b32665eea864f46466b2843bb0 4239444 wordpress-l10n_4.1+dfsg-1+deb8u5_all.deb ab85a3d2b163b90c0f8b0e08dc0578980ae1213e 501376 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u5_all.deb a6497df5cae3ab2128077a747b98b9d5e6dfa229 800584 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u5_all.deb 3941c22e1cda4a7238834a81e288170c2072a9d7 320174 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u5_all.deb Checksums-Sha256: 5866b4042ef40c4150036d8985a2b59250bc20247091ac4e85ca16e329dc8cda 2533 wordpress_4.1+dfsg-1+deb8u5.dsc 67aa898f0278de2e1b81116843ef753edac7cb168d7cbdb550f4e61cc6b75460 6116740 wordpress_4.1+dfsg-1+deb8u5.debian.tar.xz e6a195aefca765382c45e64f0c064d15fb4ca17279691d9820cee63b1935dde9 3169428 wordpress_4.1+dfsg-1+deb8u5_all.deb f4314539ab24404d95c06dff147b3586b07e8f7491a1e6075fc800af5c41b7d9 4239444 wordpress-l10n_4.1+dfsg-1+deb8u5_all.deb 2732e7c55b27c7010e052dc68ead3a031044e002b91c291078b3d99d6f0cc75d 501376 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u5_all.deb 8cf6f57c9d4b5f305a3e17fb6d39d6481197238e8c3eb6bd5ca96922d4c8ab2e 800584 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u5_all.deb 85eb2db15628af2cff4816b89958b1db101dad530b7d2db464f8f69062a1b5f0 320174 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u5_all.deb Files: 430ff2746e4e2e53495dfa5b860b0280 2533 web optional wordpress_4.1+dfsg-1+deb8u5.dsc 75fe03a706745752d341911df8aabfca 6116740 web optional wordpress_4.1+dfsg-1+deb8u5.debian.tar.xz c7ba58634b4dad522eba2b6c8012 3169428 web optional wordpress_4.1+dfsg-1+deb8u5_all.deb 99386484d8b5d8b321e08e38c822a1e5 4239444 localization optional wordpress-l10n_4.1+dfsg-1+deb8u5_all.deb 755dd5f55429e1cd64237cb3162e4817 501376 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u5_all.deb 6c6fc0148115eb59218646e2f935a84f 800584 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u5_all.deb 1cd05c7ee5fd3c0c5145ba0989b395ba 320174 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u5_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWAUVqAAoJEDk4+WvfUP6lMyIP/iLEsdvbPby9UOebDQED9rI2 OFtva44OA3+7vjmmHMZ/adIFFiMhMaJ0OI5wGcGFLv/Qxk4Er9K7I1DaP5H8zR1m pKiVuKE8IOyxGVu/imLk+yV2zciMVklgWs7pvwo9iiGPcSaGSQpsS8L3UawkshvO Wj7GY2b+IvU2nWO30nscUqbJ5+h7jpu33e654B+zsb1AOXzBetMtpEh/4T/STJbc P00jxqZObyBWRvA8SFlDQpzd9xTYpaGAIDY/X+9x75w6hM+nbc+qmk36rRVmuNe6 7MWgQvg0fJL2O4BiqEwNuB//oMi0n8g3BnrZE8fq8YAvagSDlkLOonUTsqoXXhXe vkBbJ5/NPJ/jzZC/EyoQ/bJ8ZzOA/ShJlkspuQ/hcElKTiDvrxHrfDDOVPYsUd+c gJXb69tO7KVurXUHrUmbe+YAfzeaf8fbIc2ZJ1cLS2dE8azxplrdE4nwW22bClrT o3XslLP90Cq+tVDhNoDpN4kSpHSqMhRcBCmjZIcxmQzG3bJVZqCAnHumW7JpTaEc Dlu61HYd1F5A3DuJ8dw4d9zPAhtlc0qoVugqKLnCO4fLRktXjhmcibnysu9xJBr5 9g91EX5C8RAZ0eabCNDhNYkDCGG73kyUh81wm3zFOT3sVkSK/oUdVeFzOABVwmzb cz91hbpnEQzDCflBQ+BB =i9Gy -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u6 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 28 Oct 2015 21:46:15 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u6 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 803100 Changes: wordpress (4.1+dfsg-1+deb8u6) jessie-security; urgency=high . * Fix changeset 33359 Closes: #803100 Checksums-Sha1: c2cb67d8c8bcec0e8de33fc40a8099c8bc455337 2533 wordpress_4.1+dfsg-1+deb8u6.dsc 9fd804858d7a1fb081397f7faaed4524f0f98ff8 6116660 wordpress_4.1+dfsg-1+deb8u6.debian.tar.xz d62727d0d8235e156f4d7fb778bbd189621b935d 3169500 wordpress_4.1+dfsg-1+deb8u6_all.deb 22c4c4bb86c42036ba402f8542d5a140bbe283fd 4237334 wordpress-l10n_4.1+dfsg-1+deb8u6_all.deb 4a5fbbd0fddc2b2bf8ee3db0c23f2fea73842ff0 501344 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u6_all.deb 822dc829d81f706194841d5bc5c8398151d9e505 800620 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u6_all.deb 858a9503befb321bbec6572d298ed6e9dd146509 320166 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u6_all.deb Checksums-Sha256: 93d3637c1f113f9e9df7c1d6a513c80ac341051b7b319d545028425ddb0e5558 2533 wordpress_4.1+dfsg-1+deb8u6.dsc 17a4078c9ec8f645dcaeaca95b79bc3ce075a8d9ec7de15cde4a11b057654b45 6116660 wordpress_4.1+dfsg-1+deb8u6.debian.tar.xz d8900a793c89e9dc9b24ed3ea3ae0c98afd7fce5649b292d6c95af3558054bcf 3169500 wordpress_4.1+dfsg-1+deb8u6_all.deb ea7a9b45c447d23e0f5e0c6966aeb923b5cdc84f5e1dd8bccab86d710e6ad47f 4237334 wordpress-l10n_4.1+dfsg-1+deb8u6_all.deb 63b4ecdf3ab24c0a268c412a4477a2c26177117d0415ffe87cd240f2ae7939bc 501344 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u6_all.deb d9c9fff8bb53eb4cb2be8abfb246ed8c2149ca82d9d7d6f5cc685230ddc4d758 800620 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u6_all.deb d174b021e8670a5dfb287ce2da872424981a13717bfa9b18c319dfa306efd9c1 320166 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u6_all.deb Files: c021790e2e12d1b5b121d1035445b123 2533 web optional wordpress_4.1+dfsg-1+deb8u6.dsc f8ddfbb20cf88dbdf1693146427c6ab6 6116660 web optional wordpress_4.1+dfsg-1+deb8u6.debian.tar.xz 17d17ccef176a1f060e3e99edf636f77 3169500 web optional wordpress_4.1+dfsg-1+deb8u6_all.deb ca69a083bf2ba5b26f1c6eb2b7158eaf 4237334 localization optional wordpress-l10n_4.1+dfsg-1+deb8u6_all.deb b890f8b231469e4e6c94b48fb13f0077 501344 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u6_all.deb 60dd06d717b40f82ccee11bb2a745825 800620 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u6_all.deb 3e708c5f5f3f535a3783ea8bd0c0f1da 320166 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u6_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWMKkcAAoJEAIhZsD/PITjnj4P/RhSl6UA5MWn/9lJ4ykTMILb dMRppZibNtKKvaoxQ3QLWcg0fdJkSq6UT8uW3sSh/pVxP+X68Xb4A8AA+HusiKHg BuPXgykZUZ16cdnRfuTyOBCV5JOIbmRifN5ZfRqQyjyQGHhJvUqW5Wgo1B+mQNhz ZYCVh4dfuv5GNmIUy1luAiYZkiDWDdJjufXmATLB13HvT6nr3bUjRDIxsLOUHakl CRGY5mya4t7xguSxKq0S4tv02VI3x6NlARD+JT+V8DBl18PJ3Cyrb6prxznS6h/W gtIWnk1N8dsFp5ysOx8eYr5eWsUqvadUlUtUuiByHoc/k6WTbdWiZaPtV6RJ2jaU 5u3eEG9XelAzyYiZ5JKOPAJmt82c4PkoAD2VTvEEoUjW1g6RymSqRNM/e2BINR9K dsz8B7aBhM58Yf1uMr2JDXzYssG31J37A8lXh9QUJo30glaNcCHz6f7j2CrmYbOw xKDMLaHVp+z+lb6NXoRSouK63FiywGhfC2y8LxvfcMpH5jLZfIqmQ8e6GP+h8OKg wyaC4wF7GwEPDjr3p8vUd4WwL4UJPVghN0rcphdw2ZB0AfhrkTW6/vQPq37OHWpc Kryx5LGvRBbaEldRDVX3AWv4hzVafSIywwEBT+PGcV9amnUCWW2fBEEazFTKq2vD RmWbpXAZuo5FvyIR36eO =0yLW -END PGP SIGNATURE-
Accepted wordpress 3.6.1+dfsg-1~deb7u8 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 28 Oct 2015 20:45:31 +1100 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u8 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 799140 Changes: wordpress (3.6.1+dfsg-1~deb7u8) wheezy-security; urgency=high . * Backport of 4.3.1 security fixes Closes: #799140 * Changeset 34137 XSS in user list table CVE-2015-7989 * Changeset 34144 unclosed HTML elements CVE-2015-5714 * Changeset 34151 unsticky private posts CVE-2015-5715 Checksums-Sha1: 436b47f89f578c9cdfabb026eff22cc0ba9ade81 2319 wordpress_3.6.1+dfsg-1~deb7u8.dsc 2e13da4b6a6cef11866ab63fc43ac7ac15b50a3b 5264688 wordpress_3.6.1+dfsg-1~deb7u8.debian.tar.xz 420f2f39a7624aa55067375285ad46ac934f5abb 3971758 wordpress_3.6.1+dfsg-1~deb7u8_all.deb 6ff7cc0389b5bb05378790f2911328d464d7e1be 8871462 wordpress-l10n_3.6.1+dfsg-1~deb7u8_all.deb Checksums-Sha256: 4a99efec3aa389dada704c774bf25a985324edffd4775f0fc6a495c6582fde47 2319 wordpress_3.6.1+dfsg-1~deb7u8.dsc 31b570f1a8c683788810c949a2690848f15c06615d3a4687309d5b93f5553472 5264688 wordpress_3.6.1+dfsg-1~deb7u8.debian.tar.xz 26808c84ccf984003cb9cdcccb2588d80091a0e864a267b02e86ed3c047e596b 3971758 wordpress_3.6.1+dfsg-1~deb7u8_all.deb 5cf0db35a2b61e62a4bc501bb1e6674a82ec4fb7bd3c2f0884eafafb768de487 8871462 wordpress-l10n_3.6.1+dfsg-1~deb7u8_all.deb Files: abdc8e52073e1e15593def6301b95781 2319 web optional wordpress_3.6.1+dfsg-1~deb7u8.dsc f4adff41b52946d3236fb32d6dad2841 5264688 web optional wordpress_3.6.1+dfsg-1~deb7u8.debian.tar.xz 8cd82914e18a6d087473adb941fdac2d 3971758 web optional wordpress_3.6.1+dfsg-1~deb7u8_all.deb f995c8f24b796c8ffe058605382f126c 8871462 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u8_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWMJ3wAAoJEAIhZsD/PITjH4oQAIy4bY6UIrkodjbvBjsF9srE jyz0cxuQS8aHgEYDnMJnlygTu79x5ND5OuhP7+3fwqyPgLZo0eo9hYDSG+M5JOou RxXE4htLEs3/eJcPMu2SqRy5su5DygA/iNLrgnqpLzE9rTQwfhpNSYbyJddfFxGH gX7ab1CsIHxQYnwWpgCOXdJMPRhLZ7ta+e25mn61Eu25TIryaHWt+1AsMvNHtHvK EyDB/HRs4b28HvKTMiPFTGuUKwSoVu3iQvxDpCjmDZa5kIpM/rImeFzclU8km2O6 f0GwOp0TDP5tlv/zJeloCbdmyBfQoLVcp7HQfaFf7LRWHhTQDtygrRh8gR28+eOK +c/2D05aKS7VQ2KnM7kJXt3iMYrkU9yfS1xlA4H+sJLgazIb7fwmccAbqtuzFkxj 0MW6+7Zuq1VXG03hhGploSXtPz4bXUPH42sZHoSGPCWxaZZCZUE5RiDFLPejmXYb xTsZb3cxZECm/mCBav3Yizo9xtnRaAybiF3dDMiUuuzrf3hg7Hlq7hMbYVJtAAtJ o7fTOFMpLYuOP6Wn8wENz0+RkxCLoQcX9sx0QbhOCqCALDg/MLCtoZY0QH7WcdJ1 BxswrlO0MLDkCuag6Qx9H8khHoFsCbi46p4FRYzVsiVHW42NfogUZIlzFkqaaDi7 KrqjMbY07OJflSAVDzzW =COI2 -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u7 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 09 Jan 2016 08:21:54 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u7 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 810325 Changes: wordpress (4.1+dfsg-1+deb8u7) jessie-security; urgency=high . * Apply changeset 36185 fixes XSS CVE-2016-1564 Closes: #810325 Checksums-Sha1: 2064fa6a526acc6918ea75f59002bd548037795e 2533 wordpress_4.1+dfsg-1+deb8u7.dsc 0e0b64cca4fbf4be98f06c1b1d6520f4e75e4c4a 6116540 wordpress_4.1+dfsg-1+deb8u7.debian.tar.xz 9a9d6b0ddf4bf9cc56280eb91408d1054a85da31 3170052 wordpress_4.1+dfsg-1+deb8u7_all.deb 471f223ed83ef61275239101d26c7030e0ea6e87 4237850 wordpress-l10n_4.1+dfsg-1+deb8u7_all.deb bb1246535e6f2e04837d5cdcc78cecea9f11353d 501418 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u7_all.deb f9998be27c78aea8c1882cb7f84777fe38491546 800650 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u7_all.deb 420fd542589b8d80e8ff6cd52e7228f77784053d 320280 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u7_all.deb Checksums-Sha256: 52ce839fe7e1a1c98815ff3dbfdf2b8d64ba9fc2b9122005003dfb5ad00f0669 2533 wordpress_4.1+dfsg-1+deb8u7.dsc 3412ecb2d6dbdcba25b123b78b55991be19009533fa02311a2ec9e7597f2f701 6116540 wordpress_4.1+dfsg-1+deb8u7.debian.tar.xz 818c70ff00f02ee3dfaff079a9d7ca0a0f18f6a47e792721a1aacfda5f7b9354 3170052 wordpress_4.1+dfsg-1+deb8u7_all.deb d203430c2a6f4977f5f4de6b5984028d8374d68a94d399c892bc5db433967a74 4237850 wordpress-l10n_4.1+dfsg-1+deb8u7_all.deb f896ae5dc843c1904ef46d7bd8afd30677b002f08d498b40d438f9fa01cae26d 501418 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u7_all.deb a4b2284f3fdb77d3c5ac56a0b989fe2f4b4316fd67f05170dd37296313b29978 800650 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u7_all.deb ba63896735ee5e0679ee4141ac1b798e3a579c92f372bd37dcf61fb6985146f1 320280 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u7_all.deb Files: b4ce6bc944d6691ea99abb391c73d6da 2533 web optional wordpress_4.1+dfsg-1+deb8u7.dsc 6b6b75fff7f83582a31607900a0e3a06 6116540 web optional wordpress_4.1+dfsg-1+deb8u7.debian.tar.xz 0e30efa3c7345b6f49c09526fe23b4a3 3170052 web optional wordpress_4.1+dfsg-1+deb8u7_all.deb d3d049bbfa32d8ee58c7ff55b085cc84 4237850 localization optional wordpress-l10n_4.1+dfsg-1+deb8u7_all.deb deaa3df4d45d5c626de3db99d1e9d6ce 501418 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u7_all.deb aa60738cc31322afbf11c9b6f098f431 800650 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u7_all.deb 89f0eb71a43be189e1020e03aae6f6a5 320280 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u7_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWkXJBAAoJEAIhZsD/PITjT+gP/ApTrfL+iN0qlGt5DgeBl5Nb Zf1ojnMaZwzfCy0I35PQxad/RitA9d0QSzN2Eh+2f4A2YfZb/7hKjl477sx9kYzr UKwnRjH2+ilVliKZCoM2oJ73dl/hlQuJXEnA3whOvC5Mx/95YrOE+4ks3KHmnJzL QNBvIbVWQtJhAz3RUcG+/zTa5agvOJp3tfdqvKQBfH830jnFzzNwP/uwPCHhXB05 3tHCEESKk9HD1XpR1XUm6eBMOE5Fm+VT3WXtIkqhT4/8Xyf6gLKXHVfN01IG7nRJ 1CmRYtxLTWxkHec5UCs0hxtJgd+cbRVBvrDJU3KYqkoszRZjaGzCXCy0o4NWHH4n LCiMrHz6HnRWbPXgI1wc+fnm6DzESl7UY8IFZ28TS5ZB9zWAD6DO4cFURF+YSHj7 g7wrcM8FXfP9a0eBWN3EUCvrgbjYVGZbsQTkzqbYigqWShzAc/9umpfrMGRaW05d VZDvgkfg5XtzkvH6LdBXunDvSaSX8H//VrjRf+dldVW9grQximwqbqJh+ToDtYE7 UafMR5OzbUEyI58DUC21y3hNZ7zFY/r5okGu+3WzCMiquvVOlwa1bTRQyW/9SmyN hFzuP3ojYGwcOYLAMDXfjG0CR3Tz1V4FZj+GlS1s5J5qAu6h4FykvbqE8rzznAX2 qGe4GPQZCH/jOs65aSrf =VkPy -END PGP SIGNATURE-
Accepted wordpress 3.6.1+dfsg-1~deb7u9 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 09 Jan 2016 09:13:17 +1100 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u9 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 810325 Changes: wordpress (3.6.1+dfsg-1~deb7u9) wheezy-security; urgency=high . * Apply changeset 36185 fixes XSS CVE-2016-1564 Closes: #810325 Checksums-Sha1: 9a4076a13c2adfafeb22a34c3fe06c3279b1b7cd 2319 wordpress_3.6.1+dfsg-1~deb7u9.dsc 3034020698db66e2355d1eb6c1b8c8b0ba252468 5265156 wordpress_3.6.1+dfsg-1~deb7u9.debian.tar.xz 29d58ce27c34315e8cc4fc1518481e1b3948ddb4 3971732 wordpress_3.6.1+dfsg-1~deb7u9_all.deb a83a8dfd7143b5378cb972a0cccb33a893e8f249 8871420 wordpress-l10n_3.6.1+dfsg-1~deb7u9_all.deb Checksums-Sha256: ba29abec9777fedf109a36fad50928e780266b4b95c85003bf40df5d9be9d332 2319 wordpress_3.6.1+dfsg-1~deb7u9.dsc ab184b9a134143d27cd75c9d70dc33af31c31fe548d2e8d754cb1ba325f780cd 5265156 wordpress_3.6.1+dfsg-1~deb7u9.debian.tar.xz bcbf22c91c267db0c0d1e1f8f96f82e934b767a5f13dc8c6f3bb8fbe4ee2f582 3971732 wordpress_3.6.1+dfsg-1~deb7u9_all.deb 6397b207cdc1d45bcc7d17d4a3f860103d85b244f12af273203c6fb1588c7871 8871420 wordpress-l10n_3.6.1+dfsg-1~deb7u9_all.deb Files: 9f7b858be718fa49eff6697a5fcaacea 2319 web optional wordpress_3.6.1+dfsg-1~deb7u9.dsc 7a173636b5bf044a554e413fd3543059 5265156 web optional wordpress_3.6.1+dfsg-1~deb7u9.debian.tar.xz acdfaffa5e965e843bbe3e14c0b0734f 3971732 web optional wordpress_3.6.1+dfsg-1~deb7u9_all.deb 291aec601ff8ce882dc07efb09822fdc 8871420 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u9_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWkW/0AAoJEAIhZsD/PITjyZsP/j8pwNc5y+wT7O8OZXAGzkqP zWlYG4+qEnd5eWP1a1+Ss4JQILpb64mLYWvaLQaMaXOEbictJmfBHb6FB9LZHVo/ IS0hJbFpp9IO5dGukVoUiLrzdgucP7XmEyFXNqSzApHmb41jjm3FwylPhXfc21wO rZ4hW2vAVxonjRlnj4StAV38Cu+eh8D6f4DxMJfLOwpLWMHyKYkhMLQkUR3qPYnd SW7QH3ezXtyBD4//tnJMrxStP1X4YwudYZ7VeYpGfK4sfCh2UiWK5rBvrcKXMnx7 P2iDRncsTbH3eDL6QJwXrVD8Tgdln2jAHqf07aJMYHeI7PZPH+UR+9FW0y3S3elN cibE+G9zf/udeNUBazAlFg3pVjByHYOofJHybzhWF5jL43L4voEiIVStk9HAQRaU 2KIt8zz8vLMGNyTagrBdq7cPTZvm8fA7m61kBbM+K0M+G46jjMZg8aAm7AIGFAuu nUoFT2mvc/R9fekjo6RVgjBe09c1Hu3XB75VtiWkTDbjU0wRjqpwGYanqkQU+E4U TLKj8O9+6dY9EErkKbzAR1GHND4aHVwhHoahIMjXfNwRINOmRXFtZr5pfV64Zln8 5qzMkn06C+n8KIBLmyHfvlJGURPMvZ1AKweUtxdWQc3D/Fu9gjKMBMzAhuG65bPy ppd09ELiVuXq4VsJioF1 =X4XI -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u8 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 06 Feb 2016 15:13:23 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u8 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 813697 Changes: wordpress (4.1+dfsg-1+deb8u8) jessie-security; urgency=high . * Changeset 36435 fixes SSRF for URLs CVE-2016- * Changeset 36444 improved redirect checking CVE-2016-2221 * Closes: #813697 Checksums-Sha1: ec5b7b222f44f2514fd520ea14424d29d409262d 2533 wordpress_4.1+dfsg-1+deb8u8.dsc 4b55b240b748df7f721213504dd51814fe61cee6 6117108 wordpress_4.1+dfsg-1+deb8u8.debian.tar.xz 824b3b7c595c8bad513aadeed62b9d2026afc13c 3169462 wordpress_4.1+dfsg-1+deb8u8_all.deb 5425f65784cf77d756961aa5d8e994c367a1a471 4239094 wordpress-l10n_4.1+dfsg-1+deb8u8_all.deb f66a93a4b1b2553365947f5132f6ff1855fa8922 501516 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u8_all.deb 8432cbe09c25041bc1fd4f74148b60cff44bbfb0 800680 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u8_all.deb 8b4b4f9603a30ef76f7cda64125027161def6aa8 320306 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u8_all.deb Checksums-Sha256: 19b8f53b002dd56d0e620e74cc87800cfe174d04cf24b651fb1acc1c0273e276 2533 wordpress_4.1+dfsg-1+deb8u8.dsc e78b3bdb71910eb14c02c5c86e5c905cd6f1fe613b8ffaaff274962879b80639 6117108 wordpress_4.1+dfsg-1+deb8u8.debian.tar.xz fe8a7abda8f17466e486f45c331aec91f627aadc79ab6d1bd81916827fcddccc 3169462 wordpress_4.1+dfsg-1+deb8u8_all.deb fa393650ec16c3dc8e0b0c08dc49d2d5eeef3447d39b96755405b2749bac35aa 4239094 wordpress-l10n_4.1+dfsg-1+deb8u8_all.deb cba2e6e8d26e7209e935be1deaeb0d39bc8aed11fb632381ae34e07ebb69436d 501516 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u8_all.deb a838355fb7b0e047e19852c0bda904f061f070202a9f2ac0a71054e6e48cdc57 800680 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u8_all.deb 95c93c18b535a08b3a3e4d712a7f24bcdb0a35d0ac6d308e978fa376dae83413 320306 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u8_all.deb Files: 0d41430f19ddaca26446adfef0476b2a 2533 web optional wordpress_4.1+dfsg-1+deb8u8.dsc c2f3f36a4eedbca31beb55d575f88f85 6117108 web optional wordpress_4.1+dfsg-1+deb8u8.debian.tar.xz 1692e417216724943e4158b9910bf9e9 3169462 web optional wordpress_4.1+dfsg-1+deb8u8_all.deb 31ee69de5c524f374760434b14fb1dc8 4239094 localization optional wordpress-l10n_4.1+dfsg-1+deb8u8_all.deb a7a71bc73b5a3c2b333538431d20c926 501516 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u8_all.deb a24e026c011b460582b8e38e7f477bf0 800680 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u8_all.deb d3e155f8b0947af07df57fc125279f58 320306 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u8_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWtk1PAAoJEAIhZsD/PITjUP4P/ApbKbDQWbiUrh/jZU2ecXZP f525u7vJUBcKvQuWjRpSZgXGdf54rK8alaHRCAMr5t8OUBlFCB2gk4Cmhhldb07s jpPSQJZWwnAmfcTg1aEj5uNHt8lZ/hpohcRL9WXnsCj6XYn7CUvD/CKb7TWF0mkJ TiSBFTb0AxtO8iF3ZEJoA6uaTP8YG2qrChS7N2McYKXa9qvHh4r1vtTu3E1Bh8Bm PLH5DnOxd2WAfedJhiZJkhM0zASJv/V9y+o1vFZl7OwmiVY1TSZdim1UPm/Bbuuy Y8b2wPnbl93rtJ9hQ/YQ92I+nUqT4Ne4IQnSgMxajhrXNWvoa5qnTyLFh7LbLZ+6 jf5tvizAt5hRwmgwcMFDjS1riErKjLdmQziMlQUSbI4EcrEkacc1aHWB4PNlMOWo fo24G4KU1XOmwzUzQex04ivs3S7RIf89nXd78wApSrnKnZIGITrSiIBhZqbXOSnd KpcJTp13jENZR5feVnS9gU/fFbfPfGwaKRZgjo/R2x4ssBc56ML4LLJNPXwe8kXA LjJWYelcJCxIPposETyl7LCWO6vdkuQ1jlTfZjD/ZEBHnpa/qN9tA9gzuNTeAYz9 vGH/ya4h5x0mlehvClFwVjvkUlzEEa4b9rD2ma1mt2asFVmu1yIH/MTdyFFCQX2J Yahp1VXZzXP6C67apc8C =YS+P -END PGP SIGNATURE-
Accepted wordpress 3.6.1+dfsg-1~deb7u10 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 06 Feb 2016 15:40:51 +1100 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb7u10 Distribution: wheezy-security Urgency: high Maintainer: Giuseppe Iuculano Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 813697 Changes: wordpress (3.6.1+dfsg-1~deb7u10) wheezy-security; urgency=high . * Changeset 36435 fixes SSRF for URLs CVE-2016- * Changeset 36444 improved redirect checking CVE-2016-2221 * Closes: #813697 Checksums-Sha1: 624e3af1186f06fd786b8864951bca48816e0562 2323 wordpress_3.6.1+dfsg-1~deb7u10.dsc 476338e9989881e376bec015aed326ea8ff52ad3 5264980 wordpress_3.6.1+dfsg-1~deb7u10.debian.tar.xz bd239e7e31d636b3a5011098ce80a741e125246e 3972044 wordpress_3.6.1+dfsg-1~deb7u10_all.deb ff40d9f5ba6bfccfbb00764000b590f64d1eb500 8871652 wordpress-l10n_3.6.1+dfsg-1~deb7u10_all.deb Checksums-Sha256: 6b71d3df3e22d6361cd65f89ab69250b5d7aef3179db0634030349608d26fab7 2323 wordpress_3.6.1+dfsg-1~deb7u10.dsc 50cfc661d0dc892ba523e47126dc299d20df34e923ca9615c1550731df24609d 5264980 wordpress_3.6.1+dfsg-1~deb7u10.debian.tar.xz 3d05566e61037516313511de6db993efdb04be804b794e4f1eb3de9e4d13b9da 3972044 wordpress_3.6.1+dfsg-1~deb7u10_all.deb 7779ac2b8a3423c048ca8607fecf2d8c94d21f34acd02db921cce7349552b71e 8871652 wordpress-l10n_3.6.1+dfsg-1~deb7u10_all.deb Files: e34e31f98acbb90c2b8b7520d81e5d16 2323 web optional wordpress_3.6.1+dfsg-1~deb7u10.dsc 4b60d1cd42e90ba199ad2e48caeac8c6 5264980 web optional wordpress_3.6.1+dfsg-1~deb7u10.debian.tar.xz 75dbe2992463c7ba2941263f1813b5df 3972044 web optional wordpress_3.6.1+dfsg-1~deb7u10_all.deb 0f7f09520a80382e39032b3683e452b6 8871652 localization optional wordpress-l10n_3.6.1+dfsg-1~deb7u10_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJWtaBlAAoJEAIhZsD/PITjv7gP/ivSyb+gJRP+UfvJzZ4lR4Oz tpQku/i3UgBrc+KOKRGEsHSvV0ZEpD8KroJXELj4C2RkHjycTtsw8QKRTwg6f7Ps JXv9Y8EVphb/MGS3yIRZOl9vfxu3k+ilmNtgfKp8oP/JPoLzYF5MgTZcBjzJ+dAM Q8wKAw9kB/8NEfDlSuUbOuJ3OeDkjPbjik1Tc09t5eZXUDKa01wBEUQuuBOWF2BT DQJX+DbeBa+PyyrSfbtPdGPWrFMlIdDUX4uI81riFz6pZcnQJ2VVekmFBsvaa7fT QgsVqBigp0gsgFp98zQ9TAAYTEnTegJSfg+3FOnjIIJqzAiDceE3HI/bJJELt/LA TTUzZS6upypBrLNjginxBjTn25xU79Il4+Pp/Vth4XeicglUZvcnosXkLNPobrdr IE5xBC7q+P7aXVHp9E20kca/YW0lRgd9E5vhs1KVFIVa3zQZtSb9ZqSkYLYf1QJt 4HTPyDDsmWzyK0hauPJz4/kS2NFEolP+KOCylBrwBpYlPSXYyIwPAYXtGbstSi36 eURp+RvDezu6r90n6nxUWBQkp9429e4x8gmeRXt5+DjhHpEPgE/G4uCjOH5IGn+8 4mRJgmoSlRuTfNXi7lWw1or1jA/Ey25h0/nTcv/xpu8OR3NikneFV/5Ko74RCJvZ 9l/Ka/Z44mg21siREwN4 =oMqq -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u9 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Wed, 06 Jul 2016 20:52:08 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u9 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 828225 Changes: wordpress (4.1+dfsg-1+deb8u9) jessie-security; urgency=high . * Backport patches from 4.5.3/4.1.12 Closes: #828225 * Fixes CVE-2016-5834, CVE-2016-5838, CVE-2016-5839 * Changeset 37762 admin auth redirect * Changeset 37773 Customizer urls CVE-2016-5832 * Changeset 37781 Category check CVE-2016-5837 * Changeset 37790 admin escape attach * Changeset 37800 Revision capability CVE-2016-5835 * Changeset 37815 escape url permalinks * Changeset 37818 media extensionless filenames * Changeset 32387 CVE-2015-8834 XSS in comments Checksums-Sha1: 124196667d49db39e7df0c9b017afd6e8eda13a1 2533 wordpress_4.1+dfsg-1+deb8u9.dsc c15cafdda068fbc8719b7999f3d4644798908c06 6073448 wordpress_4.1+dfsg-1+deb8u9.debian.tar.xz fe75969c022c39ea139cdb810ff0effdcf6643c4 3163088 wordpress_4.1+dfsg-1+deb8u9_all.deb ea4fafd23e1a86fa015b70d37002c867d4d169eb 4198352 wordpress-l10n_4.1+dfsg-1+deb8u9_all.deb 577c868bbe7d933b4bb6f24364c5877e926ea460 502458 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u9_all.deb 5cd040202b221775a81ce3307860d243aa44ea30 801462 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u9_all.deb 1e9a271bb45f812c8f8037d4d2ead63443678443 320668 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u9_all.deb Checksums-Sha256: d48bc4c3ecb48c21de009c073cddb9925e804a0c514383e19e4149e9998ae740 2533 wordpress_4.1+dfsg-1+deb8u9.dsc 9e125dca5ff54fdbbc253c7cc9583a7639bc619303e5e65668458bb687146bac 6073448 wordpress_4.1+dfsg-1+deb8u9.debian.tar.xz 3ecd66b971d01b9d4d5c015eda1d32787a9954417053eb12bce2eec34e5c48e4 3163088 wordpress_4.1+dfsg-1+deb8u9_all.deb 8687dbccf823eefb7613beff216d062d338124fdd6d7410628021ad1d457 4198352 wordpress-l10n_4.1+dfsg-1+deb8u9_all.deb d92adf2cde9c0c2346c96b028dc549636dec1aedf48fbc2280da56924955a701 502458 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u9_all.deb 64bfe534d341989b20c3d0fad74ac805e75203b9b1e957a8cce48ae86449e315 801462 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u9_all.deb d5b92933e71795753901ba2c7b656da307e8d97e1d265ff984bdd3a9cca651b8 320668 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u9_all.deb Files: 0339500ce48a87719655d4cf6a0140f6 2533 web optional wordpress_4.1+dfsg-1+deb8u9.dsc a346c07a755bb8d478c7bf271da694f5 6073448 web optional wordpress_4.1+dfsg-1+deb8u9.debian.tar.xz bf4f516e37c88086bbe6b877b15c1661 3163088 web optional wordpress_4.1+dfsg-1+deb8u9_all.deb df8bcbcbf09c2a7efc8406b10b04bb51 4198352 localization optional wordpress-l10n_4.1+dfsg-1+deb8u9_all.deb 13615c59d2e256a964b5d94d945962a5 502458 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u9_all.deb 7064483fe544794f99cc3d14f6eaf4d9 801462 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u9_all.deb f2b2c8b307c6a0b4e4e96564cca58096 320668 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u9_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJXoXJ6AAoJEAVMuPMTQ89EGIUP/jChmPsgw7+bWPS+BNaCX1zz U/AblX+IF2ljzJdwaE0+5dzAUaxpJiQPz2h9Pr8X5IZe9puy3sPXPafbYc+FCkkI uXn59qoUvOlrjXUA9OACjxIDAuXKqSntSECDLxkW9Jcz0kotcNcANIAilIdklpbj LwkMdDvbhXWYHVXs3qqzbLB3XNLB+naS8q/gJIUnKqPyFXC4GYBMQRdrBMcKJJKf OdtHOAgqG/TyWUIXGmJXD6RyrO/l7U7dGPpi4cFK04ooR8fykBBKPsdc3g4lSM3b j18PjQt06+CTn1kWFmVRBD5jj8JascdG1jzvIhrYfHZdCuGZiF+1pu1jZfNprVxD ZXrzXwamXNEPtNxZoz2UivzhTAck2Gj/CdofGwTK9LJz11j0W7a6ZwtJ+2FNyQSo SKkjanQx0X3T04DXB4XJUIZ0juveSF8Cdw4tCzioK4hdcZu/lON7W6r0/ljeFC1f BnaDPu2kF4C4wdBnENcEJJvp6AQk5s1LxzIwvg74hwlZqJ9qhhUoSiEQGqmcK/qZ gOWwKpmUZoST2W9nzOKRbYgFethv94Y5EJIian2ajFXpqHV6/9Aqgn85Z/tcBzs5 ydpq/H+TFKTJabqrco91E+j1VQpn+4jhLCmgMVaE7SBFACzEohZieogPJVjT8U7j dOxwZED3xibGSIDhj2Bb =uMkn -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u10 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sat, 10 Sep 2016 08:07:11 +1000 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u10 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 837090 Changes: wordpress (4.1+dfsg-1+deb8u10) jessie-security; urgency=high . * Backport patches from 4.6.1/4.1.13 Closes: #837090 * CVE-2016-6896 and CVE-2016-6897 not vulnerable * Changeset 38538 sanitize filename in media CVE-2016-7168 * Changeset 38524 sanitize filename upload upgrader CVE-2016-7169 * CVE-2016-4029: WordPress before 4.5 does not consider octal and hexadecimal IP address formats when determining an intranet address, which allows remote attackers to bypass an intended SSRF protection mechanism via a crafted address. * CVE-2016-6634: Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. * CVE-2016-6635: Cross-site request forgery (CSRF) vulnerability in the wp_ajax_wp_compression_test function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authentication of administrators for requests that change the script compression option. Checksums-Sha1: f092fb1eb33a47380c0ec8ca362c52ebf9906746 2537 wordpress_4.1+dfsg-1+deb8u10.dsc ac437190e0ea392da4ccc5262ef9233c35166ae5 6126040 wordpress_4.1+dfsg-1+deb8u10.debian.tar.xz 184e136386021352b8090b5d25a1460d861e1349 3172420 wordpress_4.1+dfsg-1+deb8u10_all.deb 106fa24dea9a667e2fe2f479e87a19331ca87f59 4236622 wordpress-l10n_4.1+dfsg-1+deb8u10_all.deb 66e6711ced807d7af8771bcdf3211b099ce64ede 502012 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u10_all.deb fa5a2d486a3eb707d60651ffca0f7a6a9e207337 801288 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u10_all.deb f868dc86ebd32ef10034fe9688b26dd1fcd76e92 320818 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u10_all.deb Checksums-Sha256: 6ab7fae71273080f38af849cb9cd469f1a77734e882974c77fdf179ea0273513 2537 wordpress_4.1+dfsg-1+deb8u10.dsc f44383ee88b7816a3c488e11dd677a60cdc5411eeaae54ad382d541b48696db9 6126040 wordpress_4.1+dfsg-1+deb8u10.debian.tar.xz f5bf9e0ae17c6b84dbead1cccb17f0a91297d740937c67f88c5f0a16bdf15a58 3172420 wordpress_4.1+dfsg-1+deb8u10_all.deb 4f25747f8aa08812dcfa20741d767dd8fce1ebf8788551258cffd5b4c6c60c02 4236622 wordpress-l10n_4.1+dfsg-1+deb8u10_all.deb ab3ee769d3e1b6687ff19f3dfbfd6fcf41b7778d01e2503cfa0aa8f1d069e34d 502012 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u10_all.deb b73dd46064424228517c128f4049bff2433952fe15a154dacea671c41570d622 801288 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u10_all.deb 823f8691bad4935579cb9b2268858595b969195ad0b9be1bf677d81c45c6e390 320818 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u10_all.deb Files: 26fed67c2608fdd016e21c6b053fa5a0 2537 web optional wordpress_4.1+dfsg-1+deb8u10.dsc 41d651a14a8da2b48b35d48f9cf62f4e 6126040 web optional wordpress_4.1+dfsg-1+deb8u10.debian.tar.xz a2a50da05c206e3e0944e8f302a8fc04 3172420 web optional wordpress_4.1+dfsg-1+deb8u10_all.deb 4aa8009cb1635461452bf6d32b8691a6 4236622 localization optional wordpress-l10n_4.1+dfsg-1+deb8u10_all.deb 6586be82424fc8cd5702ae6d96d7f84d 502012 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u10_all.deb dbed8d1ee41b97fa711b84dd2206865e 801288 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u10_all.deb 079a7a7a65438785127c9c450bfcba54 320818 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u10_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCgAGBQJX66gXAAoJEDk4+WvfUP6loIUP/2V+lv69Nhy8JfeRgT0ZcMaw IL3ZTpD20NJNVzUP/b2uoR9qjkgH0zVrboUgusDDR8pJH+qFe/NPPA8/lVHb4xt5 j0s8gHuyzXu95Y3rtPskGI2B7CXTaiblteVpBipBGnnHZG1+GS2+ZOLnCfLchrNv 4gO8fl6LbJEsPKGVQ9sNj0Vnywof+YHXNpRV2jXt5mHvH7fUtguNoMHkCRGXeDkU tm5kud3C1h9T3ep52c1pXIPa2zvyXtoLuJeRRwnrSUtFE9ZQ5CYJAVHAjJsSn54c ywD+szuHksKAQoAP4zoU2xNsbOEI1mUg3346WMFyDgYBj43Nz1oB/GZ8VDridSCm LROcqZMQAJfMuuFoUXnKsoqOZrJBVKQq57oyaluqnhNezrRo0WkOGLYkuT2C7gxB byVdN3YC/a0qsYbHWN2YgjEgH+mbaJu25V8j8ExxeGDQ0ta5sCied4npsKY5qsLL hZ19y77lCjDvYzUMnCKH+oBzWNaiBp72iA6U4KQSw67SzhJhVOv8XxtCOiYVmB2T Sco8MuT7YxGQpssRPyRdjf0K6BYKICNVNnbHAcdCY3aXlcgZbOsHFDsCwij6jd8+ majcQptNIXTVt92Vi+wskRBMPDeqCrBffLL3eweZBeLE7huhWiqg9AkSV2mhcZj3 KOP7lnTWqLX0kyYaro7Q =xbRS -END PGP SIGNATURE-
Accepted wordpress 4.1+dfsg-1+deb8u12 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 29 Jan 2017 08:53:11 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u12 Distribution: jessie-security Urgency: high Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 851310 852767 Changes: wordpress (4.1+dfsg-1+deb8u12) jessie-security; urgency=high . * Backport patches from 4.7.1 Closes: #851310 - CVE-2016-10066 Potential Remote Command Execution (RCE) in PHPMailer - CVE-2017-5488 Authenticated Cross-Site scripting (XSS) in update-core.php - CVE-2017-5490 Stored Cross-Site Scripting (XSS) via Theme Name fallback - CVE-2017-5491 Post via Email Checks mail.example.com by Default - CVE-2017-5492 Accessibility Mode Cross-Site Request Forgery (CSRF) - CVE-2017-5493 Cryptographically Weak Pseudo-Random Number Generator - CVE-2017-5489 Cross-Site Request Forgery (CSRF) via Flash Upload Changesets 39838 and 39857, thanks Seb * Backport patches from 4.7.2 Closes: #852767 - CVE-2017-5610 The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it. Changeset 39976 - CVE-2017-5611 WP_Query is vulnerable to a SQL injection (SQLi) Changeset 39962 - CVE-2017-5612 XSS in the posts list table Changeset 39985 * Not vulnerable - CVE-2017-5487 User Information Disclosure via REST API - API doesn't exist Checksums-Sha1: 253d61d082ee7b20f9816d1132f6f7eb941dc9fe 2551 wordpress_4.1+dfsg-1+deb8u12.dsc 54f8843e52895317bb448c4775983074d6f943e4 6158196 wordpress_4.1+dfsg-1+deb8u12.debian.tar.xz a06255b2ac28a553f71530a7c04b6c6817c730ce 3173462 wordpress_4.1+dfsg-1+deb8u12_all.deb d58aab3ddbbc89749dc15a3274adc3fae51a18c5 4238812 wordpress-l10n_4.1+dfsg-1+deb8u12_all.deb e6bad07f7b8c99eef4bc27b7c4321f19e32ef8e2 502594 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u12_all.deb bb731ada7b689b45fbed605471e6cf06e2e5923e 803820 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u12_all.deb 4fe4faa6c5642130f2a932d41c8c40511d91d1b7 321380 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u12_all.deb Checksums-Sha256: d992b41737f0cd2f7ced0a12b379ba867fb86f38b611c84afba46b382ed8397f 2551 wordpress_4.1+dfsg-1+deb8u12.dsc 3e664ca4320e6cd2a319e3ca9bdaacbaeb5c2181f9e9b57423c29b9e112b6ea4 6158196 wordpress_4.1+dfsg-1+deb8u12.debian.tar.xz 406bcdeb512de8a967f51518751e05feead9a043975480342cb6bef1900114ea 3173462 wordpress_4.1+dfsg-1+deb8u12_all.deb 61329288c55e2b7f581a07b6d63c221d18cb671c9568883b092ceac5005760c7 4238812 wordpress-l10n_4.1+dfsg-1+deb8u12_all.deb ef645303cbc499189d106ce141592550c49ed9651553769802df877a407c6df5 502594 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u12_all.deb 18bfafb26bb3eeab7733c599d234a9bdf4a3b85f967e92a4447f6c8570d7590f 803820 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u12_all.deb 381ed3513c4f8e230a19c69f9439a6cb616aa987d5e8a77d310090c680511a8b 321380 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u12_all.deb Files: f67c4cb3a48be59312ebb62f70e4e04e 2551 web optional wordpress_4.1+dfsg-1+deb8u12.dsc 4d939fe84850f132ec327075a199172f 6158196 web optional wordpress_4.1+dfsg-1+deb8u12.debian.tar.xz 0d71f65b49994fb52e3d4f89c0b1d68e 3173462 web optional wordpress_4.1+dfsg-1+deb8u12_all.deb dbc626fbaea46f0e98a703a1b07aa696 4238812 localization optional wordpress-l10n_4.1+dfsg-1+deb8u12_all.deb 4bf8db324e70ff9206aadddb2beebc0a 502594 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u12_all.deb 039ebe780c0089c252334fff1cb7aa39 803820 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u12_all.deb c1ceb915129dd18e3dd09f7df1095809 321380 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u12_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAliPKQsACgkQAiFmwP88 hOMjyA/9H6ewfYZ4HhxwbKVaxs7R1rw4ZQ2nmlvb7CvhlHyQZbh9Ffe7vT+wOK2+ Q98UVyJsEQFzDLEqfCV4NozVRtRj4uYdi61GB3ylrww5DM2b1NyueTanAEwopvBL POR05KpvFcAp/11XsuVjPy/z6Ifx0tbKl8+WyrBDyPoQs+Y1MVIcepWk9p+Hd5kl RanMIdfY1+7fOPLZJec8IDGYWpftB3+IjEU5P1gAX7md0eEqfU5NBgP7nM+YsaUF /X/yNUzl7lDzxJtv2lx1ZRQq42lDcdx/bBZ+GcWDgE8HpNW/exsSx69q4Wj/I1VB 7Ptecwp38ZhFZ73bI7U2oEWnRgS3olBOqEM9tNmDezsM0rr6G6tHzMmm2ccX+RQg hsw19u76GsKOJjOXLJJkj/eotJrKhpyK4it3DkECIgUHWPgsKEaFhojWEWr4MIDh ckS+aOoXDBGQup8Qxw/kQUIrfpB93WVhneLkXEiUM5KCGum4Ww4Yfuo3lDeXwCsR 6TM0arzZQB8QFs7sJhandivSzJP0Ea/KTSjXwSAkDC0tV5D4hDoPRog3Rr7
Accepted wordpress 4.1+dfsg-1+deb8u13 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 16 Mar 2017 06:19:41 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen Architecture: source all Version: 4.1+dfsg-1+deb8u13 Distribution: jessie-security Urgency: medium Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files Closes: 857026 Changes: wordpress (4.1+dfsg-1+deb8u13) jessie-security; urgency=medium . * Backport patches from 4.7.3 Closes: #857026 - CVE-2017-6814 Cross-site scripting (XSS) via media file metadata. Changeset 40155 - CVE-2017-6815 Control characters can trick redirect URL validation. Changeset 40190 - CVE-2017-6816 Unintended files can be deleted by administrators using the plugin deletion functionality. Changeset 40176 - CVE-2017-6817 Cross-site scripting (XSS) via video URL in YouTube embeds. Chamgeset 40167 * Not vulnerable: - CVE-2017-6819 Cross-site request forgery (CSRF) in Press This leading to excessive use of server resources. Press This introduced in 4.2 - CVE-2017-6818 Cross-site scripting (XSS) via taxonomy term names. Checksums-Sha1: 9dc6a86e174682f3449cd58be79d84eb3449e13c 2551 wordpress_4.1+dfsg-1+deb8u13.dsc c5eb50e0dfa3c2000f77c610c584b8b98d57c0c0 6159176 wordpress_4.1+dfsg-1+deb8u13.debian.tar.xz e5fa9d8bdc114d7e49cb0bb515fef4068865d2a5 3173472 wordpress_4.1+dfsg-1+deb8u13_all.deb c48ecab5fe72bf8752a08bab9cd2f093508b 4239634 wordpress-l10n_4.1+dfsg-1+deb8u13_all.deb fe4449da60e2f40adaad880081580c44fd464262 502816 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u13_all.deb 273afa5c639e434a0b0550161c384caed19cf02e 804064 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u13_all.deb 21d37e2d4c14bccd69b19760fb7e09b2dd12f84d 321664 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u13_all.deb Checksums-Sha256: 2b3ac02a5a019fe03e517e1ee27bcbdb96c2bd4eae37cc71b8696798f36fef1b 2551 wordpress_4.1+dfsg-1+deb8u13.dsc 6b84b39fc797e68864d08bfe6e11f455cc18a5b098d8f93d31f03429c4a368f3 6159176 wordpress_4.1+dfsg-1+deb8u13.debian.tar.xz 6e79466486a79e1ec9e2e3eabbd33b94332586f69de03ed5b4e09127a80d96db 3173472 wordpress_4.1+dfsg-1+deb8u13_all.deb c261fd7e6600ec94c0cddb4c670cbb7a50d2c6d5640211ae1141cd47351ee543 4239634 wordpress-l10n_4.1+dfsg-1+deb8u13_all.deb ce299ba16a1a63823640191c63632cef4ff0915d6bf0140401f48f757a33602d 502816 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u13_all.deb 8f97ecac5f8e7d06b82e6a8b097b43695be4d000b8c5c06012bc99dbc547cfff 804064 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u13_all.deb c7b8a9cffbb279f7613b922b64d80bd3adc6b0b621aba2060a2037f330cce3f7 321664 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u13_all.deb Files: 5e62aea8c65b5dd7efecf8069cdf6d9c 2551 web optional wordpress_4.1+dfsg-1+deb8u13.dsc 40e7ac8123a1835746dbdbcbbd604364 6159176 web optional wordpress_4.1+dfsg-1+deb8u13.debian.tar.xz b1d97314c1ea13752e2dc6cfc07e928d 3173472 web optional wordpress_4.1+dfsg-1+deb8u13_all.deb 68df51ca037579fb58cb035345dec217 4239634 localization optional wordpress-l10n_4.1+dfsg-1+deb8u13_all.deb 2eac51ed1ff368258895e37b504a9e15 502816 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u13_all.deb 85a6b8534707e3cdf6e57e333aff3b56 804064 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u13_all.deb 654507f743bc36f588eba44bfcafc268 321664 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u13_all.deb -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEXT3w9TizJ8CqeneiAiFmwP88hOMFAljMrl4ACgkQAiFmwP88 hOP9mBAAgZPI1aS+zf1Nqp6Za/zWU7gm2aF8pmtyrei7SwcBKiA6b1ohUfwlAomK 3sn7AX92nGcrN1Hq1hqX67sqtt9Z814x/ApskD/W5UtbsD0I4NMKjYzBiyrszaY6 u8ZmHOW4rI05U0LtCK1jOgD8VQk+hdPgZS+uhAbptMzCBBj63jNKFQCO1yIENlYP aD1k6wWpRuvPa4i4MMB9oKuW9lDtn38OLSQP0N9j8qwaid419v7PykSMf5HuoWwe Wz7Yg6Rjg1uezqh7AZNGIhsBoWHsO0FpgXDcZ5KqzVuRAUA6fZNkJvxpVuvUGzUC zPm6zp8jAoiNuBU4FRtQwwZE+ojZvdYfY96Qq2Vp04uT5KiyWUQ2cn+fMh0IYZdj cpsZRqtJogv+zrtjNNJFUPv2UWk/eeb5G2CYlCQ5EDPckvxkGESOTDRbVotBdWrA VEisNylJ6WCXwaCXBcZGqbXQInlWIBoC7FfqhV4SaFpI1E3Xy4oHo39acO4ZwQiG B0HX0PBbC88usTKKQQOpu05O5vDNR8NUrl0dTYf4lUQ1mUCQUqchhg9pYgSA0bZE BTxg5habvfjhkkPpkwSYBX3TPqCdh70uHMr+2IjVPEODFLEIti4sirc3cPVgY0EG FPKgJ/5CE60dU+DttWe0PsSOLSh6WxAd3GzCUrugIePzZh5AI18= =Y0AY -END PGP SIGNATURE-
Accepted wordpress 5.0.4+dfsg1-1+deb10u1 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 27 Dec 2019 15:26:33 +1100 Source: wordpress Binary: wordpress wordpress-l10n wordpress-theme-twentynineteen wordpress-theme-twentyseventeen wordpress-theme-twentysixteen Architecture: source all Version: 5.0.4+dfsg1-1+deb10u1 Distribution: buster-security Urgency: medium Maintainer: Craig Small Changed-By: Craig Small Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files wordpress-theme-twentynineteen - weblog manager - twentynineteen theme files wordpress-theme-twentyseventeen - weblog manager - twentyseventeen theme files wordpress-theme-twentysixteen - weblog manager - twentysixteen theme files Closes: 939543 942459 946905 Changes: wordpress (5.0.4+dfsg1-1+deb10u1) buster-security; urgency=medium . * Backport of the 5.3.1 security release Closes: #946905 - CVE-2019-20043 an unprivileged user could make a post sticky via the REST API. - CVE-2019-20042 cross-site scripting (XSS) could be stored in well-crafted links - CVE-2019-20041 hardening wp_kses_bad_protocol() to ensure that it is aware of the named colon attribute. - CVE-2019-16780 and CVE-2019-16781 stored XSS vulnerability using block editor content. * Backport of the 5.2.4 security release Closes: #942459 - CVE-2019-17674 Stored XSS in the Customizer - CVE-2019-17671 Viewing unauthenticated posts - CVE-2019-17672 Stored XSS to inject javascript into style tags - CVE-2019-17673 Poisoning JSON GET requests - CVE-2019-17669 SSRF in URL vaidation - CVE-2019-17675 Referer validation in admin screens * Backport of 5.2.3 security release, Closes: #939543 - CVE-2019-16223 XSS in post previews - CVE-2019-16218 XSS in stored comments - CVE-2019-16220 Open redirect due to validation and sanitization - CVE-2019-16217 XSS in media uploads - CVE-2019-16219 XSS in shortcode previews - CVE-2019-16221 XSS in dashboard - CVE-2019-16222 XSS in URL sanitization Checksums-Sha1: 1680e199b4be6c6cacb81497152b638c215c8bed 2474 wordpress_5.0.4+dfsg1-1+deb10u1.dsc c2f13e9747708167a7445848032220e21aa7400b 7841492 wordpress_5.0.4+dfsg1.orig.tar.xz 81ef210ed2f5078cb78e2aff276b33c9a2c46c96 6855228 wordpress_5.0.4+dfsg1-1+deb10u1.debian.tar.xz b6cc3409c5ab3034e0fb5be02e655d8dfe6c35a4 4384400 wordpress-l10n_5.0.4+dfsg1-1+deb10u1_all.deb 34bdd5fb049aeec2641470f70e2efa89273b7df6 306440 wordpress-theme-twentynineteen_5.0.4+dfsg1-1+deb10u1_all.deb 28c990d014762584c0c484538f62a9f87b8033ec 946000 wordpress-theme-twentyseventeen_5.0.4+dfsg1-1+deb10u1_all.deb c3bff7bc4cd576fddbadf127e2f2d9b3b96fba5d 593688 wordpress-theme-twentysixteen_5.0.4+dfsg1-1+deb10u1_all.deb 73b5ac679a6e3e1e61fcceb87fe9e4e242f5a939 5999780 wordpress_5.0.4+dfsg1-1+deb10u1_all.deb b8f192af92b57ed19610629123e1fdb35ed453cd 7315 wordpress_5.0.4+dfsg1-1+deb10u1_amd64.buildinfo Checksums-Sha256: 550595b367db12a9e96391f3c2eb99af819772154b51a81b49a023c3d724112c 2474 wordpress_5.0.4+dfsg1-1+deb10u1.dsc 0887eb0a3d0c6b2a7402d6c036b093bacc902b286b3555301c3c4a0d2e5acc7e 7841492 wordpress_5.0.4+dfsg1.orig.tar.xz d68835e139d472b5f9ad26c04b00da2e7e1fc13fc6f07cff1153c81c3350e801 6855228 wordpress_5.0.4+dfsg1-1+deb10u1.debian.tar.xz 7a43198caa2035c9140d050a31382c21625959df416bd5bc4eaa285fdc7790f0 4384400 wordpress-l10n_5.0.4+dfsg1-1+deb10u1_all.deb bbc3cb504db6060ef6fe3ef50694ef7fb0db1cb82a5f89f515f59fa704b6165f 306440 wordpress-theme-twentynineteen_5.0.4+dfsg1-1+deb10u1_all.deb f04a95781814235213e1c859c0e41e9a2e672f9d8ba6f301adb11e3257b23351 946000 wordpress-theme-twentyseventeen_5.0.4+dfsg1-1+deb10u1_all.deb b29f45945f7ad9940e9b99af91be1366f8f4b532c025cdfa4a422b7a521b492b 593688 wordpress-theme-twentysixteen_5.0.4+dfsg1-1+deb10u1_all.deb d9ea6c7280e2f3449989e60b96c31443bcfcaa4c2a7f31401fdd2c5c39a813c2 5999780 wordpress_5.0.4+dfsg1-1+deb10u1_all.deb b489a9f753846dd06ef2be6105b9705d5da6865dca72246c40ebeb974ddf1b30 7315 wordpress_5.0.4+dfsg1-1+deb10u1_amd64.buildinfo Files: 168462625aef3cd06d227b22e50b009b 2474 web optional wordpress_5.0.4+dfsg1-1+deb10u1.dsc 8213279cb75bd9fc7712853aed80458b 7841492 web optional wordpress_5.0.4+dfsg1.orig.tar.xz f5c3efa04752a1bb548df3f6500f8df3 6855228 web optional wordpress_5.0.4+dfsg1-1+deb10u1.debian.tar.xz d33b93145c8de60fccbbcd09b3f48b0f 4384400 localization optional wordpress-l10n_5.0.4+dfsg1-1+deb10u1_all.deb b17a090279bb57798c8f4bb0afc48e30 306440 web optional wordpress-theme-twentynineteen_5.0.4+dfsg1-1+deb10u1_all.deb 6748a1852da4895a638b2eb59f3362a9 946000 web optional wordpress-theme-twentyseventeen_5.0.4+dfsg1-1+deb10u1_all.deb e1752ab4754e6260dc1ed8306422a2fb 593688 web optional wordpress-theme-twentysixteen_5.0.4+dfsg1-1+deb10u1_all.deb c4725e3043e9d6ff59b1a897d93903fa
Installed lprng 3.6.12-7 (source i386)
Installed: lprng_3.6.12-7_i386.deb to dists/proposed-updates/lprng_3.6.12-7_i386.deb lprng_3.6.12-7.diff.gz to dists/proposed-updates/lprng_3.6.12-7.diff.gz lprng_3.6.12-7.dsc to dists/proposed-updates/lprng_3.6.12-7.dsc -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.6 Date: Sun, 15 Oct 2000 15:42:02 -0500 Source: lprng Binary: lprng Architecture: source i386 Version: 3.6.12-7 Distribution: stable Urgency: high Maintainer: Craig Small <[EMAIL PROTECTED]> Description: lprng - lpr/lpd printer spooling system Changes: lprng (3.6.12-7) stable; urgency=high . * SECURITY FIXES!! * syslog() overflow bug fixed * getttext NLSPATH security bug fixed. * spool_file_perms security bug fixed. * Added setuid Linux bug work-around. Files: 0e53a353291a4dca2fb78db67905fb58 563 net optional lprng_3.6.12-7.dsc 64323558930d4bacf8bba1b5e16fc8ac 27866 net optional lprng_3.6.12-7.diff.gz fd0dcae2de048dac0fdc50e96adde6a8 897334 net optional lprng_3.6.12-7_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.2 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE56jNix2zlrBLK36URAkNZAJwLk/kneKUmz4gJubKHmn/biSDaTwCgjpTN ivFR8pvEbFDdGV3ndkGNIUU= =BjGr -END PGP SIGNATURE-
Installed lprng 3.6.12-8 (source i386)
Installed: lprng_3.6.12-8_i386.deb to dists/proposed-updates/lprng_3.6.12-8_i386.deb replacing lprng_3.6.12-7_i386.deb lprng_3.6.12-8.diff.gz to dists/proposed-updates/lprng_3.6.12-8.diff.gz replacing lprng_3.6.12-7.diff.gz lprng_3.6.12-8.dsc to dists/proposed-updates/lprng_3.6.12-8.dsc replacing lprng_3.6.12-7.dsc -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.6 Date: Tue, 17 Oct 2000 16:35:43 -0500 Source: lprng Binary: lprng Architecture: source i386 Version: 3.6.12-8 Distribution: stable Urgency: high Maintainer: Craig Small <[EMAIL PROTECTED]> Description: lprng - lpr/lpd printer spooling system Closes: 74942 74946 Changes: lprng (3.6.12-8) stable; urgency=high . * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 Files: b020ac34826f9eea2d3959e3717e6bb4 563 net optional lprng_3.6.12-8.dsc d2eb9b6c536de390e8deae1572ef 29937 net optional lprng_3.6.12-8.diff.gz cf64daefeb139fe9e526c25e010f7088 897418 net optional lprng_3.6.12-8_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.2 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE57NRix2zlrBLK36URAkOsAJwOu741m+jbViOn7ZSFjxPPzpc8HQCfYf6a Yz/vDBy3VKRxW905GOL6UkA= =lwl9 -END PGP SIGNATURE-
Installed lprng 3.6.12-8 (source i386)
Installed: lprng_3.6.12-8_i386.deb to dists/potato/main/binary-i386/net/lprng_3.6.12-8.deb replacing lprng_3.6.12-6.deb lprng_3.6.12-8.diff.gz to dists/potato/main/source/net/lprng_3.6.12-8.diff.gz replacing lprng_3.6.12-6.diff.gz lprng_3.6.12-8.dsc to dists/potato/main/source/net/lprng_3.6.12-8.dsc replacing lprng_3.6.12-6.dsc -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.6 Date: Tue, 17 Oct 2000 16:35:43 -0500 Source: lprng Binary: lprng Architecture: source i386 Version: 3.6.12-8 Distribution: stable Urgency: high Maintainer: Craig Small <[EMAIL PROTECTED]> Description: lprng - lpr/lpd printer spooling system Closes: 74942 74946 Changes: lprng (3.6.12-8) stable; urgency=high . * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 Files: b020ac34826f9eea2d3959e3717e6bb4 563 net optional lprng_3.6.12-8.dsc d2eb9b6c536de390e8deae1572ef 29937 net optional lprng_3.6.12-8.diff.gz cf64daefeb139fe9e526c25e010f7088 897418 net optional lprng_3.6.12-8_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.2 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE57NRix2zlrBLK36URAkOsAJwOu741m+jbViOn7ZSFjxPPzpc8HQCfYf6a Yz/vDBy3VKRxW905GOL6UkA= =lwl9 -END PGP SIGNATURE-
