Looks like they made a release, 4.9.7 with the fix. Uploading soon. The relevant patch (for backports) is https://github.com/WordPress/WordPress/commit/c9dce0606b0d7e6f494d4abe7b193ac046a322cd
On Tue, 3 Jul 2018 at 12:34 Craig Small <csm...@debian.org> wrote: > > Hi, > I was waiting for a WordPress update but for whatever reason it's not > coming. > > The impact is less for Debian packages as most of the files are not > writable by the www-data user. A standard installation has to be writable > for the automatic updates. > > However plugin and themes are generally writable, so there is still an > impact. > > The HitFix looks okay. I will look into it further and if still ok use > that one. > > - Craig > > -- > Craig Small https://dropbear.xyz/ csmall at : dropbear.xyz > Debian GNU/Linux https://www.debian.org/ csmall at : debian.org > Mastodon: @smalls...@social.dropbear.xyz Twitter: @smallsees > GPG fingerprint: 5D2F B320 B825 D939 04D2 0519 3938 F96B DF50 FEA5 > -- Craig Small https://dropbear.xyz/ csmall at : dropbear.xyz Debian GNU/Linux https://www.debian.org/ csmall at : debian.org Mastodon: @smalls...@social.dropbear.xyz Twitter: @smallsees GPG fingerprint: 5D2F B320 B825 D939 04D2 0519 3938 F96B DF50 FEA5
