[ubuntu/precise] mediawiki 1:1.15.5-7 (Accepted)
Mahyuddin Susanto
saya at udienz.web.id
Tue Jan 24 11:44:14 UTC 2012
mediawiki (1:1.15.5-7) unstable; urgency=high
* debian/patches/CVE-2011-4360.patch: remove – the information
disclosure does not happen on 1.15 and the patch would not
work anyway because the OutputPage object has no setTitle
method (this prevents a PHP fatal error when someone has no
permissions, instead reverting to the pre-1:1.15.5-4 behaviour
of showing a page asking the user to log in)
mediawiki (1:1.15.5-6) unstable; urgency=low
[ Thorsten Glaser ]
* debian/patches/khtml_not_ff9.patch: new (Closes: #652948)
[ Jonathan Wiltshire ]
* debian/patches/CVE-2012-0046.patch: security fix for unintended exposure
of hidden content through cache pollution, CVE-2012-0046 (Closes: #655694)
Date: 2012-01-21 03:26:45.946697+00:00
Signed-By: Mahyuddin Susanto <saya at udienz.web.id>
https://launchpad.net/ubuntu/precise/+source/mediawiki/1:1.15.5-7
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list