Original release date: September 04, 2014
WordPress 3.9.2 has been released to address multiple vulnerabilities, one of which could allow a possible denial of service issue in PHP’s XML processing. WordPress 3.7.3 or 3.8.3 users will be updated to 3.7.4 or 3.8.4. Users operating older, unsupported versions of WordPress are encouraged to upgrade to 3.9.2.
US-CERT recommends users and administrators review the WordPress Maintenance and Security Release blog  and apply the necessary updates.
This product is provided subject to this Notification and this Privacy & Use policy.