{ "schema_version": "1.7.0", "id": "MGASA-2014-0328", "published": "2014-08-12T09:16:46Z", "modified": "2014-08-12T09:00:51Z", "summary": "Updated wordpress packages fix security vulnerabilities", "details": "Multiple vulnerabilities in WordPress before 3.9.2, including denial of\nservice and information disclosure issues related to XML entity expansion.\n\nThe wordpress package has been updated to version 3.9.2 to fix these issues.\nSee the release announcement for more details.\n", "references": [ { "type": "ADVISORY", "url": "https://advisories.mageia.org/MGASA-2014-0328.html" }, { "type": "REPORT", "url": "https://bugs.mageia.org/show_bug.cgi?id=13877" }, { "type": "WEB", "url": "https://www.debian.org/security/2014/dsa-3001" }, { "type": "WEB", "url": "https://wordpress.org/news/2014/08/wordpress-3-9-2/" } ], "affected": [ { "package": { "ecosystem": "Mageia:3", "name": "wordpress", "purl": "pkg:rpm/mageia/wordpress?arch=source&distro=mageia-3" }, "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" }, { "fixed": "3.9.2-1.mga3" } ] } ], "ecosystem_specific": { "section": "core" } }, { "package": { "ecosystem": "Mageia:4", "name": "wordpress", "purl": "pkg:rpm/mageia/wordpress?arch=source&distro=mageia-4" }, "ranges": [ { "type": "ECOSYSTEM", "events": [ { "introduced": "0" }, { "fixed": "3.9.2-1.mga4" } ] } ], "ecosystem_specific": { "section": "core" } } ], "credits": [ { "name": "Mageia", "type": "COORDINATOR", "contact": [ "https://wiki.mageia.org/en/Packages_Security_Team" ] } ] }