mediawiki 1:1.19.20+dfsg-2.3 source package in Debian
Changelog
mediawiki (1:1.19.20+dfsg-2.3) unstable; urgency=high
* Non-maintainer upload.
* Add patch fixing several security issues:
- (bug T85848, bug T71210) SECURITY: Don't parse XMP blocks that
contain XML entities, to prevent various DoS attacks.
- (bug T88310) SECURITY: Always expand xml entities when checking
SVG's.
- (bug T73394) SECURITY: Escape > in Html::expandAttributes to
prevent XSS.
- (bug T85855) SECURITY: Don't execute another user's CSS or JS
on preview.
- (bug T85349, bug T85850, bug T86711) SECURITY: Multiple issues
fixed in SVG filtering to prevent XSS and protect viewer's
privacy.
-- Thijs Kinkhorst <email address hidden> Mon, 06 Apr 2015 16:53:54 +0000
Upload details
- Uploaded by:
- Mediawiki Maintenance Team
- Uploaded to:
- Sid
- Original maintainer:
- Mediawiki Maintenance Team
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| mediawiki_1.19.20+dfsg-2.3.dsc | 1.7 KiB | 64a4fe8269e95497be9e118442e9c5177856f78aa51607b65b2b9032f0220a9a |
| mediawiki_1.19.20+dfsg.orig.tar.xz | 11.1 MiB | 0c263ad5e869bbb94c5d4901f89795c52a45fc59a7c6b2fbcac67a9935f3c544 |
| mediawiki_1.19.20+dfsg-2.3.debian.tar.xz | 67.8 KiB | 5e42586bb35af3daeb5a85f47caf0e50684c1f36644e2772802d6b7919f48948 |
Available diffs
No changes file available.
