Lucene search

DebianDEBIAN:DSA-3472-1:01867

HistoryFeb 08, 2016 - 8:25 p.m.

[SECURITY] [DSA 3472-1] wordpress security update

2016-02-0820:25:09

lists.debian.org

0.013 Low

EPSS

Percentile

86.0%

JSON

Debian Security Advisory DSA-3472-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
February 08, 2016 https://www.debian.org/security/faq

Package : wordpress
CVE ID : CVE-2016-2221 CVE-2016-2222
Debian Bug : 813697

Two vulnerabilities were discovered in wordpress, a web blogging tool.
The Common Vulnerabilities and Exposures project identifies the
following problems:

CVE-2016-2221

Shailesh Suthar discovered an open redirection vulnerability.

CVE-2016-2222

Ronni Skansing discovered a server-side request forgery (SSRF)
vulnerability.

For the oldstable distribution (wheezy), these problems have been fixed
in version 3.6.1+dfsg-1~deb7u10.

For the stable distribution (jessie), these problems have been fixed in
version 4.1+dfsg-1+deb8u8.

For the unstable distribution (sid), these problems have been fixed in
version 4.4.2+dfsg-1.

We recommend that you upgrade your wordpress packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8allwordpress-theme-twentyfourteen< 4.1+dfsg-1+deb8u8wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u8_all.deb
Debian6allwordpress-l10n< 3.6.1+dfsg-1~deb6u9wordpress-l10n_3.6.1+dfsg-1~deb6u9_all.deb
Debian8allwordpress-l10n< 4.1+dfsg-1+deb8u8wordpress-l10n_4.1+dfsg-1+deb8u8_all.deb
Debian8allwordpress< 4.1+dfsg-1+deb8u8wordpress_4.1+dfsg-1+deb8u8_all.deb
Debian8allwordpress-theme-twentyfifteen< 4.1+dfsg-1+deb8u8wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u8_all.deb
Debian7allwordpress-l10n< 3.6.1+dfsg-1~deb7u10wordpress-l10n_3.6.1+dfsg-1~deb7u10_all.deb
Debian7allwordpress< 3.6.1+dfsg-1~deb7u10wordpress_3.6.1+dfsg-1~deb7u10_all.deb
Debian8allwordpress-theme-twentythirteen< 4.1+dfsg-1+deb8u8wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u8_all.deb
Debian6allwordpress< 3.6.1+dfsg-1~deb6u9wordpress_3.6.1+dfsg-1~deb6u9_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	all	wordpress-theme-twentyfourteen	< 4.1+dfsg-1+deb8u8	wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u8_all.deb
Debian	6	all	wordpress-l10n	< 3.6.1+dfsg-1~deb6u9	wordpress-l10n_3.6.1+dfsg-1~deb6u9_all.deb
Debian	8	all	wordpress-l10n	< 4.1+dfsg-1+deb8u8	wordpress-l10n_4.1+dfsg-1+deb8u8_all.deb
Debian	8	all	wordpress	< 4.1+dfsg-1+deb8u8	wordpress_4.1+dfsg-1+deb8u8_all.deb
Debian	8	all	wordpress-theme-twentyfifteen	< 4.1+dfsg-1+deb8u8	wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u8_all.deb
Debian	7	all	wordpress-l10n	< 3.6.1+dfsg-1~deb7u10	wordpress-l10n_3.6.1+dfsg-1~deb7u10_all.deb
Debian	7	all	wordpress	< 3.6.1+dfsg-1~deb7u10	wordpress_3.6.1+dfsg-1~deb7u10_all.deb
Debian	8	all	wordpress-theme-twentythirteen	< 4.1+dfsg-1+deb8u8	wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u8_all.deb
Debian	6	all	wordpress	< 3.6.1+dfsg-1~deb6u9	wordpress_3.6.1+dfsg-1~deb6u9_all.deb

0.013 Low

EPSS

Percentile

86.0%

JSON

Related for DEBIAN:DSA-3472-1:01867