[Sync Request] Sync mediawiki1.7 (1.7.1-9) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
mediawiki1.7 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: mediawiki1.7
Please sync mediawiki1.7 (1.7.1-9) from Debian unstable (main).
The Ubuntu package has no changes.
Thanks.
Changelog:
mediawiki1.7 (1.7.1-9) unstable; urgency=high
* Backported security fix from 1.7.3 release:
"An XSS injection vulnerability based on Microsoft Internet Explorer's UTF-7
charset autodetection was located in the AJAX support module, affecting
MSIE users on MediaWiki 1.6.x and up when the optional setting $wgUseAjax is
enabled."
See:
http://
-- Romain Beauxis <email address hidden> Wed, 21 Feb 2007 11:23:49 +0100
mediawiki1.7 (1.7.1-8) unstable; urgency=low
* Added debconf translations, thanks to contributors!
Closes: #408607, #410987
-- Romain Beauxis <email address hidden> Tue, 20 Feb 2007 02:41:36 +0100
mediawiki1.7 (1.7.1-7) unstable; urgency=low
* Removed problematic link in /etc/mediawiki1.7.
See #388616 and #393962. Added a readme file to explain
the situation instead.
Closes: #393962
-- Romain Beauxis <email address hidden> Fri, 9 Feb 2007 00:36:38 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
status fixreleased
[Updating] mediawiki1.7 (1.7.1-6 [Ubuntu] < 1.7.1-9 [Debian]) 7_1.7.1- 9.diff. gz: downloading from http:// ftp.debian. org/debian/> 7_1.7.1. orig.tar. gz: already in distro - downloading from librarian> 7_1.7.1- 9.dsc: downloading from http:// ftp.debian. org/debian/>
* Trying to add mediawiki1.7...
- <mediawiki1.
- <mediawiki1.
- <mediawiki1.
-----BEGIN PGP SIGNATURE-----
nbV4Fd/ IRAha7AJ95bcNuL aEDhIfFE6tZTrRV T2ls5gCfU99Y ivu8lP0Q=
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFF3qPWDec
EtgkjQnIvd96Wj1
=sKAB
-----END PGP SIGNATURE-----