From 5677f831faba6fc42e12b69e1db8c3f47b443c3c Mon Sep 17 00:00:00 2001 From: Lev Lamberov Date: Thu, 14 Oct 2021 21:11:51 +0500 Subject: [SECURITY] [DSA 4985-1] wordpress security update --- english/security/2021/dsa-4985.data | 13 +++++++++++++ english/security/2021/dsa-4985.wml | 23 +++++++++++++++++++++++ 2 files changed, 36 insertions(+) create mode 100644 english/security/2021/dsa-4985.data create mode 100644 english/security/2021/dsa-4985.wml diff --git a/english/security/2021/dsa-4985.data b/english/security/2021/dsa-4985.data new file mode 100644 index 00000000000..f2c5ff72954 --- /dev/null +++ b/english/security/2021/dsa-4985.data @@ -0,0 +1,13 @@ +DSA-4985-1 wordpress +2021-10-14 +CVE-2021-39200 CVE-2021-39201 Bug#994059 Bug#994060 +wordpress +yes +yes +no + +#use wml::debian::security + + + + diff --git a/english/security/2021/dsa-4985.wml b/english/security/2021/dsa-4985.wml new file mode 100644 index 00000000000..900202264db --- /dev/null +++ b/english/security/2021/dsa-4985.wml @@ -0,0 +1,23 @@ +security update + +

Several vulnerabilities were discovered in Wordpress, a web blogging +tool. They allowed remote attackers to perform Cross-Site Scripting +(XSS) attacks or impersonate other users.

+ +

For the oldstable distribution (buster), these problems have been fixed +in version 5.0.14+dfsg1-0+deb10u1.

+ +

For the stable distribution (bullseye), these problems have been fixed in +version 5.7.3+dfsg1-0+deb11u1.

+ +

We recommend that you upgrade your wordpress packages.

+ +

For the detailed security status of wordpress please refer to +its security tracker page at: +\ +https://security-tracker.debian.org/tracker/wordpress

+ + +# do not modify the following line +#include "$(ENGLISHDIR)/security/2021/dsa-4985.data" +# $Id: $ -- cgit v1.2.3