-
Committer:
Bazaar Package Importer
-
Author(s):
Andreas Wenning
-
Date:
2009-03-26 09:25:16 UTC
-
Revision ID:
james.westby@ubuntu.com-20090326092516-c9m9w39n3aqhs3jc
Tags: 1:1.13.3-1ubuntu2
* SECURITY UPDATE: Multiple cross-site scripting (XSS) vulnerabilities in
the web-based installer (config/index.php). (LP: #348858)
- CVE-2009-0737
- debian/patches/CVE-2009-0737.patch
- patch based on upstream patches for 1.13.4 and 1.13.5
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514547
- http://lists.wikimedia.org/pipermail/mediawiki-announce/2009-February/000083.html