WordPress Release Security Update

Published: 2012-04-21
Last Updated: 2012-04-21 13:55:38 UTC
by Guy Bruneau (Version: 1)
2 comment(s)

WordPress released a security update (version 3.3.2) that fixes 3 external libraries (Plupload, SWFUpload and SWFObject) as well as privilege escalation and cross-site script (XSS) issues as well as 5 other bugs. Change log posted here. The advisory is posted here and you can download the update here.

[1] http://core.trac.wordpress.org/log/branches/3.3?rev=20552&stop_rev=20087
[2] http://wordpress.org/news/2012/04/wordpress-3-3-2/
[3] http://Pluploadwordpress.org/download/


Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu

2 comment(s)


Any tie to the Apple Flashback outbreak (http://www.techweekeurope.co.uk/news/flashback-kaspersky-wordpress-74209) or just regular fixes?

Difficult to say if it is related the Apple Flashback. Not much information posted regarding the issue.

Diary Archives