Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 553
Alerts This Week
Warning Icon 1 553

Fedora 22: 2016-9d0a25ea07 Critical: WordPress SSRF & Open Redirect Issues

fedora
Calendar Grey February 15, 2016
Dist Fedora Esm H88
Upgrade WordPress now to fix critical SSRF and open redirection vulnerabilities found in Fedora 22. Ensure your site remains secure with the newest update.
**WordPress 4.4.2 Security and Maintenance Release** WordPress 4.4.2 is now available

Summary

Wordpress is an online publishing / weblog package that makes it very easy,

almost trivial, to get information out to people on the web.

Important information in /usr/share/doc/wordpress/README.fedora

Update Information:

**WordPress 4.4.2 Security and Maintenance Release** WordPress 4.4.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.4.1 and earlier are affected by two security issues: a possible SSRF for certain local URIs, reported by Ronni Skansing; and an open redirection attack, reported by Shailesh Suthar. Thank you to both reporters for practicing responsible disclosure. In addition to the security issues above, WordPress 4.4.2 fixes 17 bugs from 4.4 and 4.4.1. For more information, see the [release notes](https://wordpress.org/documentation/wordpress-version/version-4-4-2/ or consult the [list of changes](https://core.trac.wordpress.org/query?milestone=4.4.2).

Change Log

References

Fedora Update Notification FEDORA-2016-9d0a25ea07 2016-02-14 22:34:20.703834
Name : wordpress Product : Fedora 22 Version : 4.4.2 Release : 1.fc22 URL : https://wordpress.org/ Summary : Blog tool and publishing platform Description : Wordpress is an online publishing / weblog package that makes it very easy, almost trivial, to get information out to people on the web.
Important information in /usr/share/doc/wordpress/README.fedora

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update wordpress' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: wordpress
Product: Fedora 22
Version: 4.4.2
Release: 1.fc22
Summary: Blog tool and publishing platform

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.