[Secure-testing-commits] r43650 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 30 13:26:37 UTC 2016
Author: carnil
Date: 2016-07-30 13:26:37 +0000 (Sat, 30 Jul 2016)
New Revision: 43650
Modified:
data/CVE/list
Log:
Update information for CVE-2016-5836
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-30 13:12:00 UTC (rev 43649)
+++ data/CVE/list 2016-07-30 13:26:37 UTC (rev 43650)
@@ -2415,9 +2415,8 @@
CVE-2016-5836 (The oEmbed protocol implementation in WordPress before 4.5.3 allows ...)
- wordpress 4.5.3+dfsg-1
NOTE: https://wordpress.org/news/2016/06/wordpress-4-5-3/
- NOTE: Possible upstream ticket: https://core.trac.wordpress.org/ticket/36767
+ NOTE: Upstream ticket: https://core.trac.wordpress.org/ticket/36767
NOTE: Fixed by (Branch 4.4): https://core.trac.wordpress.org/changeset/37798
- TODO: Check if this makes sense. Seems to be the only change regarding oEmbed in 4.5.3
CVE-2016-5835 (WordPress before 4.5.3 allows remote attackers to obtain sensitive ...)
{DLA-568-1}
- wordpress 4.5.3+dfsg-1
More information about the Secure-testing-commits
mailing list