Serendipity 1.5.5 Security Release

Hauser & Wenz :: Blog

Wednesday, December 22. 2010

Posted by Christian in PHP

Comments (0)
Trackbacks (0)

Serendipity 1.5.5 Security Release

The Serendipity project has released version 1.5.5 of their blog system a few hours ago. This is a security release, since there is a 0-day exploit out in the wild that is already used heavily. The security issue allows uploading script code to your server, so in other words: if affected, you are hosed.
If you are using Serendipity you should consider updating as soon as possible. Garvin has more on the issue in the release announcement.

Thanks to the Serendipity security team for their prompt actions (as always!), and to Stefan Neufeind for providing logs and insights about how the exploit was used.
Twitter Bookmark Serendipity 1.5.5 Security Release at del.icio.us Facebook Google Bookmarks FriendFeed Digg Serendipity 1.5.5 Security Release Mixx Serendipity 1.5.5 Security Release Bloglines Serendipity 1.5.5 Security Release Technorati Serendipity 1.5.5 Security Release Fark this: Serendipity 1.5.5 Security Release Bookmark Serendipity 1.5.5 Security Release at YahooMyWeb Bookmark Serendipity 1.5.5 Security Release at Furl.net Bookmark Serendipity 1.5.5 Security Release at reddit.com Bookmark Serendipity 1.5.5 Security Release at blinklist.com Bookmark Serendipity 1.5.5 Security Release at Spurl.net Bookmark Serendipity 1.5.5 Security Release at NewsVine Bookmark Serendipity 1.5.5 Security Release at Simpy.com Bookmark Serendipity 1.5.5 Security Release at blogmarks Bookmark Serendipity 1.5.5 Security Release with wists Bookmark Serendipity 1.5.5 Security Release at Ma.gnolia.com wong it! Bookmark using any bookmark manager! Stumble It! Print this article! E-mail this story to a friend! Identi.ca

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

No comments

Add Comment

Enclosing asterisks marks text as bold (*word*), underscore are made via _word_.
Standard emoticons like :-) and ;-) are converted to images.
 
 

Frontpage - Top level

Calendar

Back May '13
Mon Tue Wed Thu Fri Sat Sun
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31    

Quicksearch

Archives

Syndicate This Blog

Categories



All categories

Friendly Blogs

Uwe Baumann
Dirk Primbs
Ralf Westphal
John Coggeshall
Wez Furlong
Tobias Schlitt
Stephan Schmidt, Sebastian The Argh Mordziol, gERD Schaufelberger
Laura Thomson
Luke Welling

Powered by

Serendipity PHP Weblog

Blog Administration

Open login screen