diff --git a/source/releasenotes/2024-01-31-wordpress-6-4-3.md b/source/releasenotes/2024-01-31-wordpress-6-4-3.md index bd0003dd82..06cfcb251e 100644 --- a/source/releasenotes/2024-01-31-wordpress-6-4-3.md +++ b/source/releasenotes/2024-01-31-wordpress-6-4-3.md @@ -1,15 +1,15 @@ --- -title: WordPress 6.4.3 Security Updates +title: WordPress 6.4.3 security updates published_date: "2024-01-31" -categories: [wordpress, security] +categories: [wordpress, security, action-required] --- The latest version of WordPress, [6.4.3](https://wordpress.org/news/2024/01/wordpress-6-4-3-maintenance-and-security-release/), became available on Pantheon as of January 30, 2024.

Highlights

-* **Security updates:** Addressed two security vulnerabilities, including a PHP file upload bypass (limited to administrators), and a object injection mechanism that could be used to exploit an existing Remote Code Execution (RCE) vulnerability. For a detailed analysis of the two security patches, see [this article from Patchstack](https://patchstack.com/articles/wordpress-6-4-3-security-release/). -* 5 bug fixes in Core -* 16 bug fixes in the Block Editor +* **Security updates:** Addressed two security vulnerabilities, including a PHP file upload bypass (limited to administrators), and a object injection mechanism that could be used to exploit an existing Remote Code Execution (RCE) vulnerability. Since this release fixes security vulnerabilities, users are urged to upgrade their sites immediately. For a detailed analysis of the two security patches, see [this article from Patchstack](https://patchstack.com/articles/wordpress-6-4-3-security-release/). +* [5 bug fixes in Core](https://core.trac.wordpress.org/query?status=closed&component=!Bundled+Theme&id=!59828&milestone=6.4.3&group=status&col=id&col=summary&col=component&col=owner&col=type&col=priority&col=version&col=keywords&order=priority) +* [16 bug fixes in the Block Editor](https://github.com/WordPress/wordpress-develop/pull/5698#issuecomment-1909302298) Upgrade to WordPress 6.4.3 right from your Pantheon dashboard or Terminus for added security.