Fedora 15 : wordpress-3.1.4-1.fc15 (2011-8877)

high Nessus Plugin ID 55527

Synopsis

The remote Fedora host is missing a security update.

Description

Upstream security release. Details at http://wordpress.org/news/2011/06/wordpress-3-1-4/ Fix old FSF address and Summary to make rpmlint happy. Make wp-content directory owned by apache:apache. Correctly Provides/Obsoletes (with versions). Upgrade to the latest upstream version (security fixes and enhancements, BZ 707772). Move wp-content directory to /var/www/wordpress/ (BZ 522897).
Simplify overly detailed files list. Actually, we just don't need gettext.php at all, it is provided by php itself. Just remove the file, don't make a symlink. Revert back to wp-content in /usr/share/wordpress, I am not able to make it work. Not fixing BZ 522897.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected wordpress package.

See Also

https://wordpress.org/news/2011/06/wordpress-3-1-4/

https://bugzilla.redhat.com/show_bug.cgi?id=522897

https://bugzilla.redhat.com/show_bug.cgi?id=707772

http://www.nessus.org/u?5cb56789

Plugin Details

Severity: High

ID: 55527

File Name: fedora_2011-8877.nasl

Version: 1.9

Type: local

Agent: unix

Published: 7/7/2011

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:wordpress, cpe:/o:fedoraproject:fedora:15

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 6/30/2011

Reference Information

FEDORA: 2011-8877