Hi!
On Thu, Oct 17, 2019 at 12:49:56PM +1100, Craig Small wrote:
> I can get the CVEs.
> I can also backport the patches into stable along with the previous set.
The CVEs seem to have been assigned now.
They are CVE-2019-17669, CVE-2019-17670, CVE-2019-17671,
CVE-2019-17672, CVE-2019-17673,
I can get the CVEs.
I can also backport the patches into stable along with the previous set.
Curiously, there were 6 patchsets and 6 security bugs. But not all of them
match up.
For example, two patchsets fix one bug and another patchset fixes a
directory traversal which isn't mentioned at all.
Source: wordpress
Version: 5.2.3+dfsg1-1
Severity: grave
Tags: security upstream
Justification: user security hole
Hi Craig,
See https://wordpress.org/news/2019/10/wordpress-5-2-4-security-release/
As in previous rounds, could you please requests the CVEs as neededfor
the found issues?
3 matches
Mail list logo
