Your message dated Wed, 30 Sep 2015 10:34:40 +0000 with message-id <e1zheie-0005hx...@franck.debian.org> and subject line Bug#799140: fixed in wordpress 3.6.1+dfsg-1~deb6u8 has caused the Debian Bug report #799140, regarding wordpress: CVE-2015-5714 CVE-2015-5715 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 799140: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=799140 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: wordpress Version: 4.3+dfsg-1 Severity: grave Tags: security upstream fixed-upstream Hi See https://wordpress.org/news/2015/09/wordpress-4-3-1/ for details. I have not checked older versions in jessie and wheezy. Are they affected? If so can you update the BTS version information as needed? Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: wordpress Source-Version: 3.6.1+dfsg-1~deb6u8 We believe that the bug you reported is fixed in the latest version of wordpress, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 799...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Mike Gabriel <sunwea...@debian.org> (supplier of updated wordpress package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 30 Sep 2015 12:12:11 +0200 Source: wordpress Binary: wordpress wordpress-l10n Architecture: source all Version: 3.6.1+dfsg-1~deb6u8 Distribution: squeeze-lts Urgency: medium Maintainer: Giuseppe Iuculano <iucul...@debian.org> Changed-By: Mike Gabriel <sunwea...@debian.org> Description: wordpress - weblog manager wordpress-l10n - weblog manager - language files Closes: 799140 Changes: wordpress (3.6.1+dfsg-1~deb6u8) squeeze-lts; urgency=medium . * Non-maintainer upload by the Debian LTS Team. * debian/patches (Closes: #799140): + Add cs34112_no-unclosed-html-elements-in-attributes. Shortcodes: don't allow unclosed HTML elements in attributes (CVE-2015-5714). + Add cs34137_list-tables-escape-user-emails. Escape emails in user list tables. + Add cs34151_XMLRPC-dont-allow-private-posts-to-be-sticky. XMLRPC: Don't allow private posts to be sticky (CVE-2015-5715). Checksums-Sha1: d0a0e938cf7fcfbc7d9f48967ee2ba24e46eb7ff 2194 wordpress_3.6.1+dfsg-1~deb6u8.dsc ca621d60a7b44ee904a116cedd0e4914687f2b28 11028097 wordpress_3.6.1+dfsg-1~deb6u8.debian.tar.gz 3c4476e10bada6061b0810b83585a076bd98497c 3998592 wordpress_3.6.1+dfsg-1~deb6u8_all.deb c4fed85016d200f0aa95f1175ccc02627463beeb 8870198 wordpress-l10n_3.6.1+dfsg-1~deb6u8_all.deb Checksums-Sha256: 1e1dbb424fd510d3b1001d2697d31dedcaaa12cef048e8daa20bbcf67bfae7b0 2194 wordpress_3.6.1+dfsg-1~deb6u8.dsc 29d05f88c6bf009c3b335ec658e113532fc9745ae81b1da0617c0d6f7d9690c8 11028097 wordpress_3.6.1+dfsg-1~deb6u8.debian.tar.gz 3e0f4ac8b19f8d30459427c2eb6cab2a1063f956eeaa1101e1d88dd45005a2bf 3998592 wordpress_3.6.1+dfsg-1~deb6u8_all.deb a3ff887e87010758bd91db255605c964e8c29f2cd17660f8831a0134660bbe9f 8870198 wordpress-l10n_3.6.1+dfsg-1~deb6u8_all.deb Files: e39508e4232569a8a30bcad5f44afa8f 2194 web optional wordpress_3.6.1+dfsg-1~deb6u8.dsc d16e0fd3ca7469c2d2e5f8538ecfc095 11028097 web optional wordpress_3.6.1+dfsg-1~deb6u8.debian.tar.gz 750332dd5b7dbb29ab5ecb481746be14 3998592 web optional wordpress_3.6.1+dfsg-1~deb6u8_all.deb 9369bae7f9b68cb96e89f0717b6ff186 8870198 localization optional wordpress-l10n_3.6.1+dfsg-1~deb6u8_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJWC7hsAAoJEJr0azAldxsxwmoP/0reCkmVBpg21BUxbZdek70C ESD9m6QWftwi2W1XeQ0o3izBEyaPSQDqcQwE9loCu8OQ17ZOwa0xWOhwSv9eY8Oh zs+jHGyfesT7yDHbKQAGynN53y+f0K8X0fPq81w5j1tqi2zAZwJOWlNAoRhB1Df4 oqtQnNiFgZ5SbiOdrM4JtaY844AOvDHvyUyBcdlOtphTF6VqIHrm34kz8XSJpVIU fjT86/J65BcuZsDsAqCwKL0m2Zy9JdVHSNnm1zGuE0AszVXhNdyN5djWXo9mM2SC Y+ootSKdTaQhfO5iMy3OjnhZ0T/k+uhhswPZRTO4HsQzDbJadDBqo06gR7LqkGWY HUASzKd2rx6CqoxeYDYg0G7lSz764Hol90MxLtbPW8eRaC5YAleigYCnuclP6qIz VGQk8U4W2ckHQ3gxjIiKTwGgzsiq1l5I+3vUVNhjf8T2s9+Frif6gwwrLpHBFNtC OTKyqgL5DxNZYpgoBNr/aNKCl+XdsrBBa9+CPQs+O6cFV8jIu08laLtW+CmvzXVK SD3aUN4U6QVWaSN7vg4JnA9a5oP8dSUYETIWvJOXJcxRgap7jDdXFYVANXRro+eo GXCiYkY5IBRLVUoDvw4EZXeBkPczD6jfuDJtYq6xntHj3+cITSDvSY5mDUZ+44Rl LIofqEMFTIveyXAH9rEy =dE9k -----END PGP SIGNATURE-----
--- End Message ---
