--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2018-2ba6bfc5d8
2018-02-01 16:49:35.205319
--------------------------------------------------------------------------------
Name : wordpress
Product : Fedora EPEL 6
Version : 4.9.2
Release : 1.el6
URL :
http://www.wordpress.org
Summary : Blog tool and publishing platform
Description :
Wordpress is an online publishing / weblog package that makes it very easy,
almost trivial, to get information out to people on the web.
Important information in /usr/share/doc/wordpress-4.9.2/README.fedora
--------------------------------------------------------------------------------
Update Information:
Upstream announcement: **WordPress 4.9.2** is now available. This is a security
and maintenance release for all versions since WordPress 3.7���. We strongly
encourage you to update your sites immediately. An XSS vulnerability was
discovered in the Flash fallback files in MediaElement, a library that is
included with WordPress. Because the Flash files are no longer needed for most
use cases, they have been removed from WordPress. MediaElement has released a
new version that contains a fix for the bug, and a WordPress plugin containing
the fixed files is available in the plugin repository. Thank you to the
reporters of this issue for practicing responsible security disclosure:
Enguerran Gillier and Widiz���. 21 other bugs were fixed in WordPress 4.9.2.
Particularly of note were: * JavaScript errors that prevented saving posts
in Firefox have been fixed. * The previous taxonomy-agnostic behavior of
get_category_link() and category_description() was restored. * Switching
themes will now attempt to restore previous widget assignments, even when there
are no sidebars to map. The Codex [has more information about all of the issues
fixed in
4.9.2](https://codex.wordpress.org/Version_4.9.2), if you'd like to
learn more.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1528765 - wordpress - bundles file with non-free license
https://bugzilla.redhat.com/show_bug.cgi?id=1528765
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update wordpress' at the command line.
For more information, refer to "YUM", available at
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/...
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------