Late-breaking news on the 5.2.4 short-cycle security release that landed October 14. When we released the news post, I inadvertently missed giving props to Simon Scannell of RIPS Technologies for finding and disclosing an issue where path traversal can lead to remote code execution.
Simon has done a great deal of work on the WordPress project, and failing to mention his contributions is a huge oversight on our end.
Thank you to all of the reporters for privately disclosing vulnerabilities, which gave us time to fix them before WordPress sites could be attacked.
More Stories
chromium-117.0.5938.132-2.fc39
FEDORA-2023-c890266d3f Packages in this update: chromium-117.0.5938.132-2.fc39 Update description: update to 117.0.5938.132. Fixes following security issues: CVE-2023-5129 CVE-2023-5186 Update to 117.0.5938.92....
chromium-117.0.5938.132-2.fc38
FEDORA-2023-d66a01ad4f Packages in this update: chromium-117.0.5938.132-2.fc38 Update description: update to 117.0.5938.132. Fixes following security issues: CVE-2023-5129 CVE-2023-5186 Read More
chromium-117.0.5938.132-1.el7
FEDORA-EPEL-2023-edc9c74369 Packages in this update: chromium-117.0.5938.132-1.el7 Update description: update to 117.0.5938.132. Fixes following security issues: CVE-2023-5129 CVE-2023-5186 Update to 117.0.5938.92....
chromium-117.0.5938.132-1.el8
FEDORA-EPEL-2023-8f3e1b6f78 Packages in this update: chromium-117.0.5938.132-1.el8 Update description: update to 117.0.5938.132. Fixes following security issues: CVE-2023-5129 CVE-2023-5186 Update to 117.0.5938.92....
chromium-117.0.5938.132-1.fc37
FEDORA-2023-0cd03c3746 Packages in this update: chromium-117.0.5938.132-1.fc37 Update description: update to 117.0.5938.132. Fixes following security issues: CVE-2023-5129 CVE-2023-5186 Read More
chromium-117.0.5938.132-1.el9
FEDORA-EPEL-2023-cca1f87440 Packages in this update: chromium-117.0.5938.132-1.el9 Update description: update to 117.0.5938.132. Fixes following security issues: CVE-2023-5129 CVE-2023-5186 Update to 117.0.5938.92....