Public bug reported: Impact ------ Update 17.04 from 4.7.3 to 4.7.5 Update 16.10 from 4.6.1 to 4.6.6 Update 16.04 LTS from 4.4.2 to 4.4.10 Update 14.04 LTS from 3.8.2 to 3.8.21
to fix numerous critical security bugs. wordpress 4.7.5-1 was auto-synced from Debian to Ubuntu 17.10 Alpha "artful" Changes for Ubuntu 17.04 ------------------------ https://wordpress.org/news/2017/04/wordpress-4-7-4/ https://wordpress.org/news/2017/05/wordpress-4-7-5/ https://codex.wordpress.org/Version_4.7.4 https://codex.wordpress.org/Version_4.7.5 You can change the codex URL to a different version number if you really want to see all the individual security fixes. Testing Done ------------ Regression Potential -------------------- WordPress maintains separate branches to backport security fixes. I suspect that the older the branch gets, the more likely it is that something will break. WordPress still uses trac/svn, but there's this handy read-only copy that is easier to examine: https://github.com/WordPress/WordPress/commits/3.8-branch Other Info ---------- On one hand, I hope right now no one actually uses the Ubuntu package on a live web server. I mean, if they are using the development version of Ubuntu, it might actually work but otherwise, it's not really received any security support at all. Similarly, I guess there's a concern that if we start providing security updates, then people will start thinking that Ubuntu's 'wordpress' package is safe to use, which is fine as long as someone from the community will indeed package these updates from now on. Otherwise, maybe doing these security updates is not really helping anyone? Since 14.04's wordpress is in unseeded universe after 3 years, it's not supported any more, but since WordPress still provided a release for it, I figure it's not that much extra effort to do that update too. ** Affects: wordpress (Ubuntu) Importance: High Status: New ** Tags: trusty xenial yakkety zesty -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1691520 Title: Wordpress May 2017 security updates To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/wordpress/+bug/1691520/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
