ikiwiki 3.20170111 source package in Ubuntu
Changelog
ikiwiki (3.20170111) unstable; urgency=high
* passwordauth: prevent authentication bypass via multiple name
parameters (CVE-2017-0356, OVE-20170111-0001)
* passwordauth: avoid userinfo forgery via repeated email parameter
(also in the scope of CVE-2017-0356)
* CGI, attachment, passwordauth: harden against repeated parameters
(not believed to have been a vulnerability)
* remove: make it clearer that repeated page parameter is OK here
* t/passwordauth.t: new automated test for passwordauth
-- Simon McVittie <email address hidden> Wed, 11 Jan 2017 18:16:53 +0000
Upload details
- Uploaded by:
- Simon McVittie
- Uploaded to:
- Sid
- Original maintainer:
- Simon McVittie
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ikiwiki_3.20170111.dsc | 2.2 KiB | 845037bad96326d32eaa6cc0ca3741afafee07fc8d825abe419511e862c1789f |
| ikiwiki_3.20170111.tar.xz | 2.5 MiB | 5f0f99a4f4a5f17046e4601d628424cb2877766b4ef9bfe1c2db1941f6f7a701 |
Available diffs
- diff from 3.20170110 to 3.20170111 (5.6 KiB)
No changes file available.
Binary packages built by this source
- ikiwiki: No summary available for ikiwiki in ubuntu artful.
No description available for ikiwiki in ubuntu artful.
