Public bug reported:
Please sync wordpress 3.6+dfsg-1 (universe) from Debian unstable (main)
Explanation of FeatureFreeze exception:
WordPress doesn't really backport bug fixes or security fixes to
old releases so you are forced to upgrade to new release (like with
Google Chrome).
This particular update doesn't appear to be a security update
but I wouldn't be surprised if a future 3.6.1 is one.
Except for test-building the package I haven't done any other testing.
Changelog entries since current saucy version 3.5.2+dfsg-1:
wordpress (3.6+dfsg-1) unstable; urgency=low
* New upstream release.
* Improve wp-settings to verify that $_SERVER['HTTP_X_FORWARDED_PROTO']
exists before accessing it (avoids a PHP notice).
Thanks to Paul Dreik <[email protected]> for the report and the patch.
* Document in README.Debian the need to login to /wp-admin/ to complete
an upgrade.
* Drop useless debian/README.source
* Drop 008CVE2008-2392.patch since upstream now disables unfiltered
uploads by default. See http://core.trac.wordpress.org/ticket/10692
* Drop 009CVE2008-6767.patch since the backto parameter is validated
against a whitelist, and externally triggered upgrades are not a
security problem as long as they work.
* Update debian/missing-sources with latest versions.
* Update upstream l10n.
-- Raphaƫl Hertzog <[email protected]> Wed, 04 Sep 2013 23:18:58
+0200
** Affects: wordpress (Ubuntu)
Importance: Wishlist
Status: New
** Changed in: wordpress (Ubuntu)
Importance: Undecided => Wishlist
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1221030
Title:
FFe: Sync wordpress 3.6+dfsg-1 (universe) from Debian unstable (main)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/wordpress/+bug/1221030/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs