-
Committer:
Package Import Robot
-
Author(s):
Jonathan Wiltshire
-
Date:
2011-12-18 23:19:40 UTC
-
Revision ID:
package-import@ubuntu.com-20111218231940-48l7sco3w63vgnyq
Tags: 1:1.12.0-2lenny9
Security fixes from upstream (Closes: #650434):
CVE-2011-4360page titles on private wikis could be exposed
bypassing different page ids to index.php
CVE-2011-4361action=ajax requests were dispatched to the
relevant function without any read permission checks being done
CVE-2011-1578XSS for IE <= 6
CVE-2011-1579CSS validation error in wikitext parser
CVE-2011-1580access control checks on transwiki import feature
CVE-2011-1587fix incomplete patch for CVE-2011-1578