547320 – www-apps/wordpress-4.1.2 version, security bump

Bug 547320 - www-apps/wordpress-4.1.2 version, security bump

Summary: www-apps/wordpress-4.1.2 version, security bump

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Sebastian Pipping

URL:	https://wordpress.org/news/2015/04/wo...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2015-04-21 17:02 UTC by Leho Kraav (:macmaN @lkraav)
Modified:	2015-04-21 17:44 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Leho Kraav (:macmaN @lkraav) 2015-04-21 17:02:00 UTC

WordPress 4.1.2 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately.

WordPress versions 4.1.1 and earlier are affected by a critical cross-site scripting vulnerability, which could enable anonymous users to compromise a site. This was reported by Cedric Van Bockhaven and fixed by Gary Pendergast, Mike Adams, and Andrew Nacin of the WordPress security team.

Reproducible: Always

Comment 1 Sebastian Pipping gentoo-dev

2015-04-21 17:40:50 UTC

Friendly take over, I hope you don't mind.

Comment 2 Sebastian Pipping gentoo-dev

2015-04-21 17:44:38 UTC

+*wordpress-4.1.2 (21 Apr 2015)
+
+  21 Apr 2015; Sebastian Pipping <sping@gentoo.org> +wordpress-4.1.2.ebuild:
+  Bump to 4.1.2 (seems trivial, bug #547320)
+