~ubuntu-branches/ubuntu/maverick/mediawiki/maverick

« back to all changes in this revision

Viewing changes to includes/GlobalFunctions.php

  • Committer: Bazaar Package Importer
  • Author(s): Jonathan Wiltshire, Thorsten Glaser, Jonathan Wiltshire
  • Date: 2010-07-28 12:23:04 UTC
  • mfrom: (16.1.9 sid)
  • Revision ID: james.westby@ubuntu.com-20100728122304-l7cklondi123hl7v
Tags: 1:1.15.5-1
[ Thorsten Glaser ]
* debian/patches/suppress_warnings.patch: new, suppress warnings
  about session_start() being called twice also in the PHP error
  log, not just MediaWiki’s, for example run from FusionForge

[ Jonathan Wiltshire ]
* New upstream security release:
  - correctly set caching headers to prevent private data leakage
       (closes: #590660, LP: #610782)
  - fix XSS vulnerability in profileinfo.php
       (closes: #590669, LP: #610819)

Show diffs side-by-side

added added

removed removed

Lines of Context:
2678
2678
        }
2679
2679
        session_cache_limiter( 'private, must-revalidate' );
2680
2680
        wfSuppressWarnings();
2681
 
        session_start();
 
2681
        @session_start();
2682
2682
        wfRestoreWarnings();
2683
2683
}
2684
2684