Bug 230825

Summary: Backdoor exploit in wordpress 2.1.1
Product: [Fedora] Fedora Reporter: Paul Fisher <paul>
Component: wordpressAssignee: John Berninger <john>
Status: CLOSED NEXTRELEASE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: urgent Docs Contact:
Priority: medium    
Version: 5CC: fedora-security-list, tcallawa
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://wordpress.org/development/2007/03/upgrade-212/
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-03-03 13:42:44 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Paul Fisher 2007-03-03 06:29:27 UTC
Description of problem:

Backdoor introduced in 2.1.1 fc5 update from upstream.
See http://wordpress.org/development/2007/03/upgrade-212/

Version-Release number of selected component (if applicable):

2.1.1-0.fc5

How reproducible:



Steps to Reproduce:
1.
2.
3.
  
Actual results:


Expected results:


Additional info:

Comment 1 John Berninger 2007-03-03 13:42:44 UTC
New 2.1.2-0 packages built.

Comment 2 Ville Skyttä 2007-03-03 16:07:44 UTC
Repository push is in progress.