Debian Package Tracker

From: Andrea De Iacovo <andrea.de.iacovo@gmail.com>
To: <debian-changes@lists.debian.org>
Subject: Accepted wordpress 2.0.10-1etch2 (source all)
Date: Thu, 05 Jun 2008 07:52:19 +0000
Signed by: Thijs Kinkhorst <thijs@kinkhorst.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Tue, 29 Apr 2008 10:57:36 +0200
Source: wordpress
Binary: wordpress
Architecture: source all
Version: 2.0.10-1etch2
Distribution: stable-security
Urgency: high
Maintainer: Andrea De Iacovo <andrea.de.iacovo@gmail.com>
Changed-By: Andrea De Iacovo <andrea.de.iacovo@gmail.com>
Description: 
 wordpress  - an award winning weblog manager
Changes: 
 wordpress (2.0.10-1etch2) stable-security; urgency=high
 .
   * 2.0.12 backport to fix some issues
   * Added 002CVE2007-3639.patch to fix redirect issue through wp-pass.php (CVE-2007-3639)
   * Added 003CVE2007-4153.patch to fix cross-site scripting (XSS)
     vulnerabilities through options.php (CVE-2007-4153)
   * Added 004CVE2007-4154 to fix SQL injection vulnerability in options.php (CVE-2007-4154)
   * Added CVE2007-0540.patch to fix denial of service vulnerability
     via pingback service calls (CVE-2007-0540)
   * Added 008trac-4748.patch to fix unauthorized acces issue via themes.php; attackers
     could change themes and de/activate plugins without permission. (trac #4748)
Files: 
 2e297f530d472f47b40ba50ea04b1476 891 web optional wordpress_2.0.10-1etch2.dsc
 663e0b7c1693ff63715e0253ad5cc036 29327 web optional wordpress_2.0.10-1etch2.diff.gz
 4851fe016749b1b9c819fd8d5785198e 521244 web optional wordpress_2.0.10-1etch2_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBSBnwkmz0hbPcukPfAQJwZwf9GxkGu5WykKLGGdE4rkd6NVfdZwJmH9kE
JDH9e4fu+EZLKtKBoHl5V6vjU5VLOiFalPG/MSRaomSEvDnH52mJ7srtGv+XTiar
K5At826PyyhPkNfpXpVxY15glK5/gFzUpy/mDpV4XIw9e1I2Yp+0pldOhqq0V9vJ
3ZVFPK0rnXaNyMQwC/pHTb/XqbCik/Z6blfx4KPQM3OYd4aEK5FDWGdAWjaUnW4R
zJoR7o28WaFqMZW72YvL9UF10UC+2iCDMjtpSG3BI6nd0yc/pyetu/VW9Lnco+6p
4mi0RwetbY/Uko/tkwJBk09itpBhD2PKnKK5a/+lwKDbSZ6XWPxnEQ==
=IZlx
-----END PGP SIGNATURE-----


Accepted:
wordpress_2.0.10-1etch2.diff.gz
  to pool/main/w/wordpress/wordpress_2.0.10-1etch2.diff.gz
wordpress_2.0.10-1etch2.dsc
  to pool/main/w/wordpress/wordpress_2.0.10-1etch2.dsc
wordpress_2.0.10-1etch2_all.deb
  to pool/main/w/wordpress/wordpress_2.0.10-1etch2_all.deb

News for package wordpress