Ubuntu
mediawiki package

mediawiki 1:1.15.1-1ubuntu2 source package in Ubuntu

Changelog

mediawiki (1:1.15.1-1ubuntu2) lucid; urgency=low

  * SECURITY UPDATE: MediaWiki was found to be vulnerable to login CSRF. An
    attacker who controls a user account on the target wiki can force the
    victim to login as the attacker, via a script on an external website.
    IMPORTANT: Fix includes a breaking change to the API login action. Any
    clients using it will need to be updated. (LP: #557159)
    - debian/patches/CSRF-no-CVE_rev-64680.patch
    - patch from upstream SVN rev. 64680
    - http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-April/000090.html
    - https://bugzilla.wikimedia.org/show_bug.cgi?id=23076
 -- Andreas Wenning <email address hidden>   Wed, 07 Apr 2010 11:46:10 +0200

Upload details

Uploaded by:
Andreas Wenning
Uploaded to:
Lucid
Original maintainer:
Ubuntu Development Team
Architectures:
any
Section:
web
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
mediawiki_1.15.1.orig.tar.gz 10.3 MiB 044a221b135673b395ca9b253af6eed7196eb991827c35348a683c4bae59da44
mediawiki_1.15.1-1ubuntu2.diff.gz 33.1 KiB d5401399268159953131a5e89a513d37072e21dba3e72dd778e228b210c6c236
mediawiki_1.15.1-1ubuntu2.dsc 1.3 KiB 737a60bf9e44c55990ceee85ab82d365b4301428c5ad517d2f1a9e5a1e212804

View changes file

Binary packages built by this source

mediawiki: No summary available for mediawiki in ubuntu maverick.

No description available for mediawiki in ubuntu maverick.

mediawiki-math: No summary available for mediawiki-math in ubuntu maverick.

No description available for mediawiki-math in ubuntu maverick.