[Bug 1970440] Re: wordpress should be removed from the archives
Jeremy BĂcha
1970440 at bugs.launchpad.net
Fri Dec 5 12:54:17 UTC 2025
I believe that with as many CVEs as wordpress gets, with its security
reputation, and with how much market share it has, that it is a
disservice to Ubuntu's users for wordpress to remain in Ubuntu stable
releases with no one handling security updates.
I am aware that wordpress provides some levels of long term support with
security fixes backported to old stable branches. This makes it easier
for someone to prepare the Ubuntu security updates so it's sad that
someone hasn't done this.
It looks like the last Ubuntu security update for wordpress was in 2014:
https://launchpad.net/ubuntu/+source/wordpress/+changelog
https://ubuntu.com/security/notices?details=wordpress
https://ubuntu.com/security/cves?package=wordpress
There is no Snap for Wordpress itself:
https://snapcraft.io/store?q=wordpress
I believe our users would be better served by installing WordPress
themselves. WordPress has been famous for 20 years for its easy install.
WordPress installed without using the .deb package can easily be set up
to apply minor (security, etc) bug fixes automatically.
--
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1970440
Title:
wordpress should be removed from the archives
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/wordpress/+bug/1970440/+subscriptions
More information about the ubuntu-archive
mailing list