ikiwiki 3.20170111 source package in Ubuntu
Changelog
ikiwiki (3.20170111) unstable; urgency=high * passwordauth: prevent authentication bypass via multiple name parameters (CVE-2017-0356, OVE-20170111-0001) * passwordauth: avoid userinfo forgery via repeated email parameter (also in the scope of CVE-2017-0356) * CGI, attachment, passwordauth: harden against repeated parameters (not believed to have been a vulnerability) * remove: make it clearer that repeated page parameter is OK here * t/passwordauth.t: new automated test for passwordauth -- Simon McVittie <email address hidden> Wed, 11 Jan 2017 18:16:53 +0000
Upload details
- Uploaded by:
- Simon McVittie
- Uploaded to:
- Sid
- Original maintainer:
- Simon McVittie
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
ikiwiki_3.20170111.dsc | 2.2 KiB | 845037bad96326d32eaa6cc0ca3741afafee07fc8d825abe419511e862c1789f |
ikiwiki_3.20170111.tar.xz | 2.5 MiB | 5f0f99a4f4a5f17046e4601d628424cb2877766b4ef9bfe1c2db1941f6f7a701 |
Available diffs
- diff from 3.20170110 to 3.20170111 (5.6 KiB)
No changes file available.
Binary packages built by this source
- ikiwiki: No summary available for ikiwiki in ubuntu artful.
No description available for ikiwiki in ubuntu artful.