--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-e70f89fa34
2019-10-25 18:06:00.866376
--------------------------------------------------------------------------------
Name : wordpress
Product : Fedora 29
Version : 5.2.4
Release : 1.fc29
URL :
http://www.wordpress.org
Summary : Blog tool and publishing platform
Description :
Wordpress is an online publishing / weblog package that makes it very easy,
almost trivial, to get information out to people on the web.
Important information in /usr/share/doc/wordpress/README.fedora
--------------------------------------------------------------------------------
Update Information:
**WordPress 5.2.4 Security Release** WordPress versions 5.2.3 and earlier are
affected by these bugs, which are fixed in version 5.2.4. **Security Updates**
* Props to Evan Ricafort for finding an issue where stored XSS (cross-site
scripting) could be added via the Customizer. * Props to J.D. Grimes who
found and disclosed a method of viewing unauthenticated posts. * Props to
Weston Ruter for finding a way to create a stored XSS to inject Javascript into
style tags. * Props to David Newman for highlighting a method to poison the
cache of JSON GET requests via the Vary: Origin header. * Props to Eugene
Kolodenker who found a server-side request forgery in the way that URLs are
validated. * Props to Ben Bidner of the WordPress Security Team who
discovered issues related to referrer validation in the admin.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2019 Remi Collet <remi(a)remirepo.net> - 5.2.4-1
- WordPress 5.2.4 Security Release
* Thu Sep 5 2019 Remi Collet <remi(a)remirepo.net> - 5.2.3-1
- WordPress 5.2.3 Security and Maintenance Release
* Wed Jun 19 2019 Remi Collet <remi(a)remirepo.net> - 5.2.2-1
- WordPress 5.2.2 Maintenance Release
* Wed May 22 2019 Remi Collet <remi(a)remirepo.net> - 5.2.1-1
- WordPress 5.2.1 Maintenance Release
* Wed May 8 2019 Remi Collet <remi(a)remirepo.net> - 5.2.0-1
- WordPress 5.2 ���Jaco���
- raise dependency on PHP 7.2
* Fri Mar 22 2019 Remi Collet <remi(a)remirepo.net> - 5.1.1-4
- fix wp-tinymce.js is missing, wp-tinymce.js.gz is empty #1691524
* Wed Mar 13 2019 Remi Collet <remi(a)remirepo.net> - 5.1.1-1
- WordPress 5.1.1 Security and Maintenance Release
* Fri Feb 22 2019 Remi Collet <remi(a)remirepo.net> - 5.1-1
- WordPress 5.1 ���Betty���
* Fri Jan 11 2019 Remi Collet <remi(a)remirepo.net> - 5.0.3-1
- WordPress 5.0.3 Maintenance Release
* Thu Dec 20 2018 Remi Collet <remi(a)remirepo.net> - 5.0.2-1
- WordPress 5.0.2 Maintenance Release
* Thu Dec 13 2018 Remi Collet <remi(a)remirepo.net> - 5.0.1-1
- WordPress 5.0.1 Security Release
* Wed Dec 12 2018 Remi Collet <remi(a)remirepo.net> - 5.0-1
- WordPress 5.0 ���Bebo���
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-e70f89fa34' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------