Debian Linux Security Advisory 3328-2 - The security update for wordpress in DSA 3328 contained a regression. The patch for issue CVE-2015-5622 was faulty. A new package version has been released that backs this patch out pending resolution of the problem.
c4d9e31b5f37c8c10f2ab9b01ed62e57c7dd49f93e9bb24d6b05d75b64af8b51
Debian Linux Security Advisory 3328-1 - Several vulnerabilities have been found in Wordpress, the popular blogging engine.
0fe2f36ccb4402230be9fa8cb3b4150d88175339d405b8222f84ef0ee4fb8c0c