Accepted mediawiki 1:1.14.0-1~bpo50+1 (source all amd64)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 20 May 2009 17:31:23 +1100
Source: mediawiki
Binary: mediawiki mediawiki-math
Architecture: source all amd64
Version: 1:1.14.0-1~bpo50+1
Distribution: lenny-backports
Urgency: low
Maintainer: Mediawiki Maintenance Team <pkg-mediawiki-devel@lists.alioth.debian.org>
Changed-By: Romain Beauxis <toots@rastageeks.org>
Description:
mediawiki - website engine for collaborative work
mediawiki-math - math rendering plugin for MediaWiki
Closes: 490009 497042 501115 508868 508869 508870 510896 514547 515192
Changes:
mediawiki (1:1.14.0-1~bpo50+1) lenny-backports; urgency=low
.
* Rebuild for lenny-backports.
.
mediawiki (1:1.14.0-1) unstable; urgency=low
.
* New upstream release.
* Fixed issues in the installer:
"A number of cross-site scripting (XSS) security vulnerabilities were
discovered in the web-based installer (config/index.php).
These vulnerabilities all require a live installer once the installer
has been used to install a wiki, it is deactivated.
.
Note that cross-site scripting vulnerabilities can be used to attack
any website in the same cookie domain. So if you have an uninstalled
copy of MediaWiki on the same site as an active web service, MediaWiki
could be used to attack the active service."
Closes: #514547
* Fixed typo in README.Debian
Closes: #515192
* Updated japanese debconf translation, thanks to Hideki Yamane
Closes: #510896
* Added a file in debian/copyright
.
mediawiki (1:1.13.3-1) unstable; urgency=low
.
* New upstream release.
* Fix CVE-2008-5249: XSS vulnerability in MediaWiki:
"An XSS vulnerability affecting all MediaWiki installations between
1.13.0 and 1.13.2."
Closes: #508868
* Fix CVE-2008-5250: several local script injection vulnerabilities
in MediaWiki:
"o A local script injection vulnerability affecting Internet Explorer
clients for all MediaWiki installations with uploads enabled.
o A local script injection vulnerability affecting clients with SVG
scripting capability (such as Firefox 1.5+), for all MediaWiki
installations with SVG uploads enabled."
Closes: #508869
* Fix CVE-2008-5252: CSRF vulnerability affecting the Special:Import
feature in MediaWiki:
"A CSRF vulnerability affecting the Special:Import feature, for all
MediaWiki installations since the feature was introduced in 1.3.0."
Closes: #508870
.
mediawiki (1:1.13.2-1) unstable; urgency=low
.
* New upstream release
* Fix CVE-2008-4408: XSS in mediawiki:
"Cross-site scripting (XSS) vulnerability allows remote attackers
to inject arbitrary web script or HTML via the useskin parameter
to an unspecified component."
Closes: #501115
.
mediawiki (1:1.13.0-2) unstable; urgency=low
.
* Removed buggy postgresql patch
Closes: #497042
.
mediawiki (1:1.13.0-1) unstable; urgency=low
.
* New upstream release
* Fixed watch file. Closes: #490009
* Refreshed patches
* Bumped standard-version to 3.8.0
* Fixed latex-related dependencies in mediawiki-math
* Removed obsolete linda override, thanks lintian !
Checksums-Sha1:
0f073c004e8be6a59ca62abccb422fad6b8cf2a1 1559 mediawiki_1.14.0-1~bpo50+1.dsc
47d98ead3ba1c5c28e7cd30806febf8db650e7f6 10122254 mediawiki_1.14.0.orig.tar.gz
a9950f6fd1a9911fe824eaf7816e584dd5400238 29104 mediawiki_1.14.0-1~bpo50+1.diff.gz
a026effd1ffc1f62ca09e6f75a5943f621ccdbaa 10099630 mediawiki_1.14.0-1~bpo50+1_all.deb
4e26954a2d85c2c85a2ea098e27d67178e2b6101 156864 mediawiki-math_1.14.0-1~bpo50+1_amd64.deb
Checksums-Sha256:
539827965931926c11e4f1298a56c3de918e01090ec2e523a45a1a90bb948711 1559 mediawiki_1.14.0-1~bpo50+1.dsc
4a50f891548e0de8d2f12de14dd745f93d798fef0f5de6968385ee7f9b1917ed 10122254 mediawiki_1.14.0.orig.tar.gz
40e1363b59eed190b22b369bb6a751cd4ad877dcc143c46d3acecfacb1d757e2 29104 mediawiki_1.14.0-1~bpo50+1.diff.gz
b41effcddcab4cbcc27f0aaeaca5191719339aa51d50d7d92e2e4bf9d70e653d 10099630 mediawiki_1.14.0-1~bpo50+1_all.deb
5705da30af2ffb4532d2fdb5ce806b9ee0ba7152e36378f79560a48444c5fc4b 156864 mediawiki-math_1.14.0-1~bpo50+1_amd64.deb
Files:
30b9502e66a0093b5ea820113e181f05 1559 web optional mediawiki_1.14.0-1~bpo50+1.dsc
36bfd924e92b61a6f5fe70c6bc8e5aac 10122254 web optional mediawiki_1.14.0.orig.tar.gz
da4b5d6d09274f53efeb0bfa3877ea75 29104 web optional mediawiki_1.14.0-1~bpo50+1.diff.gz
251cf02a31aa3591c5732e6ce1c87730 10099630 web optional mediawiki_1.14.0-1~bpo50+1_all.deb
8fcb041199cffd5ac8c94c77ce2c0a4c 156864 web optional mediawiki-math_1.14.0-1~bpo50+1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iQEcBAEBAgAGBQJKE6XqAAoJEAC5aaocqV0Z1bgH/3zJyxnP2OaRcbJ3ultAAg/o
qPNtY7C/qjhgGVyhHeGk80QnlWd/sYKA2mhqWkL7g8l/zBMn8LHEWimdanUQUrhh
gEjxnYJjmbC9BJW6oy2S0fWMgBOdawS63cn/iiT3ri/9kbqIHEs1juUXwoUTCjtX
Iyd7XTLzucdzb205vAh+gJf9W19CcbaOnZHuPHz6acAal3t91V0qiXVnw/RHLuvY
d+NGzl7HY8XiYwdIaCmCfjW2ytb2ZfzgLu8gYeI/XlEFafY+fiWfTuArr7nyW+mo
eSclTahNF8IRtvUlN1TzKUPgBZ4nYZXnB3eFFZbjiKHPXoBywYhWpvYr9Gwfrnc=
=Qvkv
-----END PGP SIGNATURE-----
Accepted:
mediawiki-math_1.14.0-1~bpo50+1_amd64.deb
to pool/main/m/mediawiki/mediawiki-math_1.14.0-1~bpo50+1_amd64.deb
mediawiki_1.14.0-1~bpo50+1.diff.gz
to pool/main/m/mediawiki/mediawiki_1.14.0-1~bpo50+1.diff.gz
mediawiki_1.14.0-1~bpo50+1.dsc
to pool/main/m/mediawiki/mediawiki_1.14.0-1~bpo50+1.dsc
mediawiki_1.14.0-1~bpo50+1_all.deb
to pool/main/m/mediawiki/mediawiki_1.14.0-1~bpo50+1_all.deb
mediawiki_1.14.0.orig.tar.gz
to pool/main/m/mediawiki/mediawiki_1.14.0.orig.tar.gz
Reply to: