wordpress - security update

2014-08-0900:00:00

Google

osv.dev

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Multiple security issues have been discovered in Wordpress, a web
blogging tool, resulting in denial of service or information disclosure.
More information can be found in the upstream advisory at

https://wordpress.org/news/2014/08/wordpress-3-9-2/.

For the stable distribution (wheezy), these problems have been fixed in
version 3.6.1+dfsg-1~deb7u4.

For the unstable distribution (sid), these problems have been fixed in
version 3.9.2+dfsg-1.

We recommend that you upgrade your wordpress packages.

CPENameOperatorVersion
wordpresseq3.6.1+dfsg-1~deb6u9
wordpresseq3.6+dfsg-1
wordpresseq3.5.2+dfsg-1
wordpresseq3.6.1+dfsg-1~deb6u4
wordpresseq3.5.2+dfsg-1~deb6u1
wordpresseq3.6.1+dfsg-1~deb7u2
wordpresseq3.6.1+dfsg-1~deb6u6
wordpresseq3.6.1+dfsg-1~deb6u1
wordpresseq3.5.1+dfsg-2
wordpresseq3.5.2+dfsg-1~deb7u1

Name	Operator	Version
wordpress	eq	3.6.1+dfsg-1~deb6u9
wordpress	eq	3.6+dfsg-1
wordpress	eq	3.5.2+dfsg-1
wordpress	eq	3.6.1+dfsg-1~deb6u4
wordpress	eq	3.5.2+dfsg-1~deb6u1
wordpress	eq	3.6.1+dfsg-1~deb7u2
wordpress	eq	3.6.1+dfsg-1~deb6u6
wordpress	eq	3.6.1+dfsg-1~deb6u1
wordpress	eq	3.5.1+dfsg-2
wordpress	eq	3.5.2+dfsg-1~deb7u1