[ubuntu/karmic] wordpress 2.8.3-2ubuntu1 (Accepted)

Michael Bienia geser at ubuntu.com
Fri Aug 14 12:50:13 BST 2009 

wordpress (2.8.3-2ubuntu1) karmic; urgency=low

  * Merge from debian unstable, remaining changes:
    - debian/apache.conf:
      + Changed to use /var/www instead of /srv/www for virtual webroot.
    - debian/setup-mysql:
      + Changed to use /var/www instead of /srv/www.

wordpress (2.8.3-2) unstable; urgency=medium

  * [2372863] debian/patches/011enforce_activaction_key.dpatch: Enforce
    activation key to be a string (Closes: #541102)
  * [cb80386] Fixed CVE-2008-6767 patch and prevent redirect loop.
    (Closes: #541199)

wordpress (2.8.3-1) unstable; urgency=medium

  * [f625087] Imported Upstream version 2.8.3 (Closes: #533387, #539411)
    This release fixed several security issue:
    - Privileges unchecked and multiple information disclosures.
      (CVE-2009-2334, CVE-2009-2335, CVE-2009-2336) (Closes: #536724)
    - CVE-2009-2431, CVE-2009-2432: Obtain sensitive information
      (Closes: #537146)
    - CVE-2008-6762: Open redirect vulnerability in wp-admin/upgrade.php
      (Closes: #531736)
  * [347c164] debian/control: Added Giuseppe Iuculano in Uploaders,
    added Vcs and DM-Upload-Allowed control field
  * [92fb4ab] Bump to debhelper 7 compatibility levels
  * [5b8536e] Refreshing patches
  * [d999c0e] Added a watch file
  * [4163c0c] debian/rules: Do not remove the autosave tinymce plugin, there
    isn't anymore.
  * [9c4d0e5] debian/get-upstream-i18n: download .xpi files into
    debian/languages
  * [76b7c5c] Install language files
  * [a0bfad2] Move gettext in Build-Depends-Indep
  * [8b607bf] Use set -e instead of passing -e to the shell on the #!
    line
  * [6cbbf36] debian/patches/009CVE2008-6767.dpatch: Only admin can
    upgrade wordpress. (CVE-2008-6767) (Closes: #531736)
  * [d6adfbe] Disabled the the "please update" warning, thanks to Hans
    Spaans and Rolf Leggewie (Closes: #506685)
  * [15c360c] Updated to standards version 3.8.2 (No changes needed)

Date: Fri, 14 Aug 2009 13:32:33 +0200
Changed-By: Michael Bienia <geser at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Michael Bienia <michael at bienia.de>
https://launchpad.net/ubuntu/karmic/+source/wordpress/2.8.3-2ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Format: 1.8
Date: Fri, 14 Aug 2009 13:32:33 +0200
Source: wordpress
Binary: wordpress
Architecture: source
Version: 2.8.3-2ubuntu1
Distribution: karmic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Michael Bienia <geser at ubuntu.com>
Description: 
 wordpress  - weblog manager
Closes: 506685 531736 531736 533387 536724 537146 539411 541102 541199
Changes: 
 wordpress (2.8.3-2ubuntu1) karmic; urgency=low
 .
   * Merge from debian unstable, remaining changes:
     - debian/apache.conf:
       + Changed to use /var/www instead of /srv/www for virtual webroot.
     - debian/setup-mysql:
       + Changed to use /var/www instead of /srv/www.
 .
 wordpress (2.8.3-2) unstable; urgency=medium
 .
   * [2372863] debian/patches/011enforce_activaction_key.dpatch: Enforce
     activation key to be a string (Closes: #541102)
   * [cb80386] Fixed CVE-2008-6767 patch and prevent redirect loop.
     (Closes: #541199)
 .
 wordpress (2.8.3-1) unstable; urgency=medium
 .
   * [f625087] Imported Upstream version 2.8.3 (Closes: #533387, #539411)
     This release fixed several security issue:
     - Privileges unchecked and multiple information disclosures.
       (CVE-2009-2334, CVE-2009-2335, CVE-2009-2336) (Closes: #536724)
     - CVE-2009-2431, CVE-2009-2432: Obtain sensitive information
       (Closes: #537146)
     - CVE-2008-6762: Open redirect vulnerability in wp-admin/upgrade.php
       (Closes: #531736)
   * [347c164] debian/control: Added Giuseppe Iuculano in Uploaders,
     added Vcs and DM-Upload-Allowed control field
   * [92fb4ab] Bump to debhelper 7 compatibility levels
   * [5b8536e] Refreshing patches
   * [d999c0e] Added a watch file
   * [4163c0c] debian/rules: Do not remove the autosave tinymce plugin, there
     isn't anymore.
   * [9c4d0e5] debian/get-upstream-i18n: download .xpi files into
     debian/languages
   * [76b7c5c] Install language files
   * [a0bfad2] Move gettext in Build-Depends-Indep
   * [8b607bf] Use set -e instead of passing -e to the shell on the #!
     line
   * [6cbbf36] debian/patches/009CVE2008-6767.dpatch: Only admin can
     upgrade wordpress. (CVE-2008-6767) (Closes: #531736)
   * [d6adfbe] Disabled the the "please update" warning, thanks to Hans
     Spaans and Rolf Leggewie (Closes: #506685)
   * [15c360c] Updated to standards version 3.8.2 (No changes needed)
Checksums-Sha1: 
 77a67661110173d8b0500b70f33ef997d7e618e5 1481 wordpress_2.8.3-2ubuntu1.dsc
 669cdf11a1728321283c724a0207eb37653caf73 2078634 wordpress_2.8.3.orig.tar.gz
 5a9908d28d4207461f3a77be146b5fe441918bff 3387885 wordpress_2.8.3-2ubuntu1.diff.gz
Checksums-Sha256: 
 1c93765bddf1fa9ad460ab3458591b91e61d9dd08d6ff8f552deecae98cea4ae 1481 wordpress_2.8.3-2ubuntu1.dsc
 8db730cf2e852103967a1fce49294b65168746341474b7f8b49967d2a3461c59 2078634 wordpress_2.8.3.orig.tar.gz
 3c969398765f4fd04e9296833ce7547992b1b534c9eb4efb6b283e4b59c84329 3387885 wordpress_2.8.3-2ubuntu1.diff.gz
Files: 
 6a3b0f846ae3fa704e465866e9941dc5 1481 web optional wordpress_2.8.3-2ubuntu1.dsc
 0edfb5145f4b246eed72646355c45ea0 2078634 web optional wordpress_2.8.3.orig.tar.gz
 4cce4b85f14c84c01979301139c60505 3387885 web optional wordpress_2.8.3-2ubuntu1.diff.gz
Original-Maintainer: Andrea De Iacovo <andrea.de.iacovo at gmail.com>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (GNU/Linux)

iJwEAQEDAAYFAkqFTkMACgkQo8/XfXduguqhEgP/cLdkdysunLdPmsFpwZ43uOpe
m5bI++RuoqwMhY5TWtAAnf3tdhHgP+Pb2CE+hgLMWNKmCrpD/vjO+K7EUFFRJxSb
JWVECfAzHBTrmama1BdKyQwSkD/aBrYuci3K0+AW73aRVcQre7tsj1xhOgfwOXpT
jJX5jEETxHRWvLNYfFU=
=qTD7
-----END PGP SIGNATURE-----

More information about the Karmic-changes mailing list