Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 639682 (CVE-2017-17091, CVE-2017-17092, CVE-2017-17093, CVE-2017-17094) - <www-apps/wordpress-4.9.1: Multiple vulnerabilities
Summary: <www-apps/wordpress-4.9.1: Multiple vulnerabilities
Status: RESOLVED FIXED
Alias: CVE-2017-17091, CVE-2017-17092, CVE-2017-17093, CVE-2017-17094
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial
Assignee: Gentoo Security
URL:
Whiteboard: ~4 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2017-12-04 01:23 UTC by GLSAMaker/CVETool Bot
Modified: 2018-01-25 21:12 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2017-12-04 01:23:09 UTC
CVE-2017-17094 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-17094):
  wp-includes/feed.php in WordPress before 4.9.1 does not properly restrict
  enclosures in RSS and Atom fields, which might allow attackers to conduct
  XSS attacks via a crafted URL.

CVE-2017-17093 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-17093):
  wp-includes/general-template.php in WordPress before 4.9.1 does not properly
  restrict the lang attribute of an HTML element, which might allow attackers
  to conduct XSS attacks via the language setting of a site.

CVE-2017-17092 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-17092):
  wp-includes/functions.php in WordPress before 4.9.1 does not require the
  unfiltered_html capability for upload of .js files, which might allow remote
  attackers to conduct XSS attacks via a crafted file.

CVE-2017-17091 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-17091):
  wp-admin/user-new.php in WordPress before 4.9.1 sets the newbloguser key to
  a string that can be directly derived from the user ID, which allows remote
  attackers to bypass intended access restrictions by entering this string.
Comment 1 Christopher Díaz Riveros (RETIRED) gentoo-dev Security 2017-12-04 01:24:15 UTC
@Maintainers please let us know when tree is clean.

Thank you