Slow Crawling Fixes

WordPress 3.0.2 went out some days ago. Announced as security release (full 3.0.2 Changelog) for the stable wordpress version.

While taking a look into the changelog, I got a little flashback. The most prominent security issue was in fact an old and already published one: A detailed report of multiple wordpress vulnerabilities by Mage in the russian magazine Hacker 04/09 (google translation). The current reporter has updated his website regarding the credits. The original problem was introduced with #6644 in [7645].

This somehow reminded me to something similar with the 2.9.2 release. A difference is, that there wasn’t a trac ticket or report first, but for the current fix there was (only) some article somewhere in the web. Interestingly it took so long until it was discovered.

Probably let’s file this as User Story and an in depth review of the source code could help here (not my idea, though) as users are not reporting much.

This entry was posted in Pressed, Surviving the Internet and tagged , , , , . Bookmark the permalink.

3 Responses to Slow Crawling Fixes

  1. Pingback: Too yellow to name a ticket – Wordpress Security bites itself again in 3.0.4 | hakre on wordpress

  2. Pingback: WordPress 3.0.4 vyšel nečekaně kvůli kritické bezpečnostní chybě | Separatista

  3. Pingback: WordPress 3.0.2 přichází s bezpečnostní opravou | Separatista

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s