Bug 1364909 (CVE-2016-4029, CVE-2016-6634, CVE-2016-6635)
Summary: | CVE-2016-4029 CVE-2016-6634 CVE-2016-6635 wordpress: 4.5 release security fixes | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Andrej Nemec <anemec> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | unspecified | CC: | carnil, fedora, gwync, sethdjennings |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | wordpress 4.5 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2016-08-08 07:43:09 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Andrej Nemec
2016-08-08 07:42:43 UTC
Hi This bug mentions CVE-2016-6633 as beeing assigned for wordpress fix in 4.5. Is this correct? The CVE seems to be assigned to the following phpmyadmin issue: https://www.phpmyadmin.net/security/PMASA-2016-56/ (In reply to Salvatore Bonaccorso from comment #1) > Hi > > This bug mentions CVE-2016-6633 as beeing assigned for wordpress fix in 4.5. > Is this correct? The CVE seems to be assigned to the following phpmyadmin > issue: > > https://www.phpmyadmin.net/security/PMASA-2016-56/ Hi Salvatore, You are correct, the third CVE fixed in the 4.5 release is indeed CVE-2016-4029 not CVE-2016-6633. I fixed it now. Thanks! |