Fedora 11: 2009-8109 Moderate: WordPress XSS Security Update

Wordpress is an online publishing / weblog package that makes it very easy,

almost trivial, to get information out to people on the web.

ChangeLog:

* Tue Jul 28 2009 Adrian Reber - 2.8.2-1

- updated to 2.8.2 for security fixes - BZ 512900

- fixed "wrong-script-end-of-line-encoding" of license.txt

- correctly disable auto update check

- fixed an error message from 'find' during the build

* Mon Jul 27 2009 Fedora Release Engineering - 2.8.1-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild

* Fri Jul 10 2009 Adrian Reber - 2.8.1-1

- updated to 2.8.1 for security fixes - BZ 510745

* Mon Jun 22 2009 Adrian Reber - 2.8-1

- updated to 2.8

References:

[ 1 ] Bug #512900 - WordPress: XSS via unescaped HTML URLs as author comments in the admin page

https://bugzilla.redhat.com/show_bug.cgi?id=512900

This update can be installed with the "yum" update program. Use

su -c 'yum update wordpress' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/