Ubuntu
mediawiki package

mediawiki 1:1.13.3-1ubuntu2.2 source package in Ubuntu

Changelog

mediawiki (1:1.13.3-1ubuntu2.2) jaunty-security; urgency=low

  * SECURITY UPDATE: MediaWiki was found to be vulnerable to login CSRF. An
    attacker who controls a user account on the target wiki can force the
    victim to login as the attacker, via a script on an external website.
    IMPORTANT: Fix includes a breaking change to the API login action. Any
    clients using it will need to be updated. (LP: #557159)
    - debian/patches/CSRF-no-CVE_rev-64680.patch
    - patch based on upstream SVN rev. 64680
    - http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-April/000090.html
    - https://bugzilla.wikimedia.org/show_bug.cgi?id=23076
    - CVE-2010-1150
 -- Andreas Wenning <email address hidden>   Wed, 07 Apr 2010 11:56:59 +0200

Upload details

Uploaded by:
Andreas Wenning
Sponsored by:
Marc Deslauriers
Uploaded to:
Jaunty
Original maintainer:
MOTU
Architectures:
any
Section:
web
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
mediawiki_1.13.3.orig.tar.gz 8.8 MiB da6962de7156def500ff926060d1d3d1db93ab94ee97620ca5ab8e444035a244
mediawiki_1.13.3-1ubuntu2.2.diff.gz 52.6 KiB eb389ec5148d2721d6cfc51beee9702a245e969c7d383944266cd9c523199d5a
mediawiki_1.13.3-1ubuntu2.2.dsc 1.3 KiB 1219cf2bbb347903c3e20ab66f434e29295741c76ca50e200fdb4f30d828a6ee

View changes file

Binary packages built by this source

mediawiki: No summary available for mediawiki in ubuntu jaunty.

No description available for mediawiki in ubuntu jaunty.

mediawiki-math: No summary available for mediawiki-math in ubuntu jaunty.

No description available for mediawiki-math in ubuntu jaunty.