[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#276057: security note



Note that a number of security holes have been found in mediawiki over
the last year. The latest one, CAN-2005-2396 is a cross-site-scripting
hole affecting version 1.4.6 and earlier.
(http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2396)

A few others include CAN-2005-1245, CAN-2005-0536, CAN-2005-0535,
CAN-2005-0534, CAN-2004-1405, CAN-2004-2152.

I recommend a thurough look at these before a release. If you need help
the testing security team can do it, if you give us the version you plan
to release.

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature


Reply to: