[ Thorsten Glaser ] * debian/patches/suppress_warnings.patch: new, suppress warnings about session_start() being called twice also in the PHP error log, not just MediaWiki’s, for example run from FusionForge
[ Jonathan Wiltshire ] * New upstream security release: - correctly set caching headers to prevent private data leakage (closes: #590660, LP: #610782) - fix XSS vulnerability in profileinfo.php (closes: #590669, LP: #610819)