wordpress: CVE-2015-2213 CVE-2015-5730 CVE-2015-5731 CVE-2015-5732 CVE-2015-5733 CVE-2015-5734: 4.2.3 and earlier multiple vulnerabilities

Debian Bug report logs - #794560
wordpress: CVE-2015-2213 CVE-2015-5730 CVE-2015-5731 CVE-2015-5732 CVE-2015-5733 CVE-2015-5734: 4.2.3 and earlier multiple vulnerabilities

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Henri Salo <henri@nerv.fi>

To: submit@bugs.debian.org

Subject: WordPress 4.2.3 and earlier multiple vulnerabilities

Date: Tue, 4 Aug 2015 15:38:37 +0300

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Package: wordpress
Version: 4.2.3+dfsg-1
Severity: grave
Tags: security, fixed-upstream

This release addresses six issues, including three cross-site scripting
vulnerabilities and a potential SQL injection that could be used to compromise a
site, which were discovered by Marc-Alexandre Montpas of Sucuri, Helen Hou-Sandí
of the WordPress security team, Netanel Rubin of Check Point, and Ivan Grigorov.
It also includes a fix for a potential timing side-channel attack, discovered by
Johannes Schmitt of Scrutinizer, and prevents an attacker from locking a post
from being edited, discovered by Mohamed A. Baset.

For more information please see:
    https://wordpress.org/news/2015/08/wordpress-4-2-4-security-and-maintenance-release/
    http://openwall.com/lists/oss-security/2015/08/04/5

- -- 
Henri Salo
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=5NXI
-----END PGP SIGNATURE-----

Message #10 received at 794560-close@bugs.debian.org (full text, mbox, reply):

From: Craig Small <csmall@debian.org>

To: 794560-close@bugs.debian.org

Subject: Bug#794560: fixed in wordpress 4.2.4+dfsg-1

Date: Tue, 04 Aug 2015 13:21:15 +0000

Source: wordpress
Source-Version: 4.2.4+dfsg-1

We believe that the bug you reported is fixed in the latest version of
wordpress, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 794560@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Craig Small <csmall@debian.org> (supplier of updated wordpress package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 04 Aug 2015 22:48:41 +1000
Source: wordpress
Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen
Architecture: source all
Version: 4.2.4+dfsg-1
Distribution: unstable
Urgency: high
Maintainer: Craig Small <csmall@debian.org>
Changed-By: Craig Small <csmall@debian.org>
Description:
 wordpress  - weblog manager
 wordpress-l10n - weblog manager - language files
 wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files
 wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files
 wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files
Closes: 794560
Changes:
 wordpress (4.2.4+dfsg-1) unstable; urgency=high
 .
   * New upstream release
   * Security fix for 3 XSS and a SQL injection bugs Closes: #794560
Checksums-Sha1:
 38515bf49ac2a75604e1fec91017051799a36de9 2519 wordpress_4.2.4+dfsg-1.dsc
 851f3ceaf4ee7506f7ab722c0bdfc830aa01d4e6 4830380 wordpress_4.2.4+dfsg.orig.tar.xz
 4377a25ecb4abc1acf50e0ff77ad67cf79bdf8d0 5981300 wordpress_4.2.4+dfsg-1.debian.tar.xz
 3b6d475177f65145489233952fee3d67fcfdad18 4238728 wordpress-l10n_4.2.4+dfsg-1_all.deb
 932f47c2baf5204f0adb80149e739bf23beb9134 502126 wordpress-theme-twentyfifteen_4.2.4+dfsg-1_all.deb
 3550154e789cb20755d3299a89646b968de877e5 800700 wordpress-theme-twentyfourteen_4.2.4+dfsg-1_all.deb
 3bd082e7b2d8d02006f205c491de20cc955c1f2c 320144 wordpress-theme-twentythirteen_4.2.4+dfsg-1_all.deb
 cb2cf7a82acb2fcb77dc7e06e72ed0decafc6a85 3247758 wordpress_4.2.4+dfsg-1_all.deb
Checksums-Sha256:
 c8018ebec491c9c73fbe9ee355f6878debdaa9716284145cacde9f9e43c5546f 2519 wordpress_4.2.4+dfsg-1.dsc
 d31f9eb50b48f461899a49e161da4208a5d82881baf55b7601bace295fcec68b 4830380 wordpress_4.2.4+dfsg.orig.tar.xz
 4815ca969507dc06413f9242527a7875b6a7bab7fc36c930d669ad1177de81ad 5981300 wordpress_4.2.4+dfsg-1.debian.tar.xz
 005a5b3e46ef6a3f7342d3f000365f7c545749166a70617c1cd8e41e5fbcf632 4238728 wordpress-l10n_4.2.4+dfsg-1_all.deb
 24103dd1a21c67bd552faa571ebd544a3c842b1731425f1c38d229f0052d0c66 502126 wordpress-theme-twentyfifteen_4.2.4+dfsg-1_all.deb
 60bda0ed6ff350f17712f2d081cf6dc17c2dab835cae63524ec3d925a8f67e49 800700 wordpress-theme-twentyfourteen_4.2.4+dfsg-1_all.deb
 34b655e6a061aa1d8d69670ade16b1abd9ee8dfe0c15657f89df4a2f72c43cb2 320144 wordpress-theme-twentythirteen_4.2.4+dfsg-1_all.deb
 0126617a1f08a317c3daaa4a38c48d6ddabc6a2e2d757d0fbcb3f37cc3784826 3247758 wordpress_4.2.4+dfsg-1_all.deb
Files:
 4d3cb013468c9da68eacc9bb2ef554b4 2519 web optional wordpress_4.2.4+dfsg-1.dsc
 7806a08b8c6ecdd8a329859aa8164b27 4830380 web optional wordpress_4.2.4+dfsg.orig.tar.xz
 170ca64dfbbb31abd3f796f6d33a6eb6 5981300 web optional wordpress_4.2.4+dfsg-1.debian.tar.xz
 44d1e53ecd85319deefedd5b1529cd26 4238728 localization optional wordpress-l10n_4.2.4+dfsg-1_all.deb
 bd1e6b6c2a44d7ba4a75f4edd69866c0 502126 web optional wordpress-theme-twentyfifteen_4.2.4+dfsg-1_all.deb
 709d67ec557b616398e245bfefa80633 800700 web optional wordpress-theme-twentyfourteen_4.2.4+dfsg-1_all.deb
 49adc0406feabe191497d34e8b2f2ebe 320144 web optional wordpress-theme-twentythirteen_4.2.4+dfsg-1_all.deb
 c4c85cc795c5b8ecd7e0823e5c335765 3247758 web optional wordpress_4.2.4+dfsg-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=RnDL
-----END PGP SIGNATURE-----

Message #19 received at 794560-submitter@bugs.debian.org (full text, mbox, reply):

From: Craig Small <csmall@debian.org>

To: 794560-submitter@bugs.debian.org

Subject: Bug#794560 marked as pending

Date: Wed, 05 Aug 2015 07:59:15 +0000

tag 794560 pending
thanks

Hello,

Bug #794560 reported by you has been fixed in the Git repository. You can
see the changelog below, and you can check the diff of the fix at:

    http://git.debian.org/?p=collab-maint/wordpress.git;a=commitdiff;h=2440937

---
commit 244093711d163b97311ce50403ce430be62de318
Author: Craig Small <csmall@debian.org>
Date:   Wed Aug 5 17:57:26 2015 +1000

    Rework changeset 33359
    
    Commit 92342cd broke wordpress with a badly patched changeset
    from upstream. The changeset has been reworked and now php lint
    is much happier.
    
    This also fixes (again) CVE-2015-5622 for jessie.

diff --git a/debian/changelog b/debian/changelog
index 585a79e..8d0fe3a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+wordpress (4.1+dfsg-1+deb8u4) UNRELEASED; urgency=medium
+
+  * Rework changeset 33359 reliable shortcodes CVE-2015-5622 Closes: #794548
+  * Backports of 4.2.4 security fixes Closes: #794560
+
+ -- Craig Small <csmall@debian.org>  Wed, 05 Aug 2015 17:41:30 +1000
+
 wordpress (4.1+dfsg-1+deb8u3) jessie-security; urgency=high
 
   * Non-maintainer upload by the Security Team

Message #24 received at 794560-close@bugs.debian.org (full text, mbox, reply):

From: Craig Small <csmall@debian.org>

To: 794560-close@bugs.debian.org

Subject: Bug#794560: fixed in wordpress 4.1+dfsg-1+deb8u4

Date: Tue, 11 Aug 2015 21:47:23 +0000

Source: wordpress
Source-Version: 4.1+dfsg-1+deb8u4

We believe that the bug you reported is fixed in the latest version of
wordpress, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 794560@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Craig Small <csmall@debian.org> (supplier of updated wordpress package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 05 Aug 2015 22:44:20 +1000
Source: wordpress
Binary: wordpress wordpress-l10n wordpress-theme-twentyfifteen wordpress-theme-twentyfourteen wordpress-theme-twentythirteen
Architecture: source all
Version: 4.1+dfsg-1+deb8u4
Distribution: jessie-security
Urgency: high
Maintainer: Craig Small <csmall@debian.org>
Changed-By: Craig Small <csmall@debian.org>
Description:
 wordpress  - weblog manager
 wordpress-l10n - weblog manager - language files
 wordpress-theme-twentyfifteen - weblog manager - twentytfifteen theme files
 wordpress-theme-twentyfourteen - weblog manager - twentyfourteen theme files
 wordpress-theme-twentythirteen - weblog manager - twentythirteen theme files
Closes: 794548 794560
Changes:
 wordpress (4.1+dfsg-1+deb8u4) jessie-security; urgency=high
 .
   * Rework changeset 33359 reliable shortcodes CVE-2015-5622 Closes: #794548
   * Backports of 4.2.4 security fixes Closes: #794560
   * Changeset 33555 SQL Injection CVE-2015-2213
   * Changeset 33535 fixes timing attack CVE-2015-4730
   * Changeset 33542 prevent posts lock attack CVE-2015-5731
   * Changeset 33529 XSS widget title CVE-2015-5732
   * CVE-2015-5733: Not vulnerable CS32176 fixes this
   * Changeset 33549 theme preview XSS CVE-2015-5734
Checksums-Sha1:
 f79d291d8ea25cd90919437fb9d1fecebc9768e4 2533 wordpress_4.1+dfsg-1+deb8u4.dsc
 bfdb4cc4aa0eae23804b1a8ee71f792c997d3d97 6115692 wordpress_4.1+dfsg-1+deb8u4.debian.tar.xz
 4da3b3fcd173abcc09be8bffdc25f39cdc3f0c09 3169256 wordpress_4.1+dfsg-1+deb8u4_all.deb
 07de63d883a9bbd8e503ca1fa4ec43b7e3e31a7f 4238128 wordpress-l10n_4.1+dfsg-1+deb8u4_all.deb
 86fdf39805e883e07ea416ca00cffbb5f629f7ed 501258 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u4_all.deb
 4498803c95deeac8a4662f3f434419722523e3da 800496 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u4_all.deb
 f229a6408dcdfc1809e7da6cf3f9ea920b887c64 320176 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u4_all.deb
Checksums-Sha256:
 590770aac3643a3c70d6760dea42a6f1660596b20ed4644565a00572d008d0cf 2533 wordpress_4.1+dfsg-1+deb8u4.dsc
 402c78945d133e2ef70997bcea91ca4cca35c7205136d912a2bf991031208549 6115692 wordpress_4.1+dfsg-1+deb8u4.debian.tar.xz
 919855f09b3939be8579f6ea1c0480fd67fddcff916ed94317584013942f7e2f 3169256 wordpress_4.1+dfsg-1+deb8u4_all.deb
 cb644fde09ae496095980675d12224c1333bdc6e18b68099439fb42951470469 4238128 wordpress-l10n_4.1+dfsg-1+deb8u4_all.deb
 a010c3ce64fd0255967a37afd2d02a43a028cd42ec9ce5d69c57e063a36916b0 501258 wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u4_all.deb
 2078722937f448efabe2755606ce3d337fa129f308b0fd99f42eab5c7c6adc2f 800496 wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u4_all.deb
 8dc189d0d2ac605b7e758836a7d78327a2b2e48c24aae520e0cc0d30062a9b77 320176 wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u4_all.deb
Files:
 577746706fa21996e2f64ec47f3620f0 2533 web optional wordpress_4.1+dfsg-1+deb8u4.dsc
 c17f0ebbdeab000ac072f8e9d2f726bc 6115692 web optional wordpress_4.1+dfsg-1+deb8u4.debian.tar.xz
 685383657bfab41737b032b350e22d98 3169256 web optional wordpress_4.1+dfsg-1+deb8u4_all.deb
 407c02c26d6a7bd2d9c96a09465cdaed 4238128 localization optional wordpress-l10n_4.1+dfsg-1+deb8u4_all.deb
 5537c91245c51ed0f2653a5f396d5cf4 501258 web optional wordpress-theme-twentyfifteen_4.1+dfsg-1+deb8u4_all.deb
 df1b7a1f1b49a6f1963a5ae6c39c7915 800496 web optional wordpress-theme-twentyfourteen_4.1+dfsg-1+deb8u4_all.deb
 2b6800b84f2c25b53df56f80c605f67e 320176 web optional wordpress-theme-twentythirteen_4.1+dfsg-1+deb8u4_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQIcBAEBCgAGBQJVycsYAAoJEDk4+WvfUP6lEU8QAICteXJSBqZOrZtZE9JSn5T6
nN3LpWJJ7y8VudjblT1iDFNyMp0Gm9gtmf2VbFb8+q0Oh+RoYAvW5JdxezEzdGhL
A7k1eBO16fEXSA4mv6JOWyRjWoVigfvlk2X/q4Q9iA5XC7Rt1kCv5gdFUsSqD9Dr
Di68T+usZZA0O/TLa/PqYBoXIXKzXN7kma/udnf8hrVQpPuZK1Wq0J4ArkAHLQ17
RsiM24luhAzKgesifVwXEHBdSjlBB6vsxYiAoj8VbywZOMDyFlWeIv1OqJoMw3mE
IATjDNOKzjAbSFtlY22vv4hX3fLMQI5HdgoTtxpPEicJqSZzbeXfMDGjvBTbmMuT
kgqDFMsMNBfrdjQIhZRyHcIZKJRHDPxM/WddbwDq9vaKDxmuztAa4lmQgyGj24ps
VJI8dQtSrfo1Ijcp0CCMPds68JIc+ApUQCxGO7s5GFisSDC6i2ftttKOi7+D1yv6
YGJ4nSnlynuTmaZOe1pYnj+D8/hRxFz+RjyoW8YOtxwK14/Vw3keA25mA/po5KeD
ajD2h8vDAF04vBUhRoG36Tv3pgHa56NdbxflAS8DXoPlHVHwqwTkZTl8ZcyvR70M
6RE4wz279vZV/bq1JfZmbaCxJt+4uHahfRGNjyevGYQ3GJ+ucZ95NiHXhRKhG+fo
4vXruUoRZMQ24Ap0ahA4
=omlP
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.