Your message dated Thu, 20 Sep 2012 12:19:37 +0000 with message-id <e1tefjf-0004su...@franck.debian.org> and subject line Bug#686330: fixed in mediawiki 1:1.19.2-1 has caused the Debian Bug report #686330, regarding mediawiki: Multiple security issues CVE-2012-4377,CVE-2012-4378,CVE-2012-4379,CVE-2012-4380,CVE-2012-4381,CVE-2012-4382 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 686330: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686330 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: mediawiki Severity: grave Tags: security Justification: user security hole Please see here for more info: http://www.gossamer-threads.com/lists/wiki/mediawiki/295767 No CVE IDs available yet. Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: mediawiki Source-Version: 1:1.19.2-1 We believe that the bug you reported is fixed in the latest version of mediawiki, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 686...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Thorsten Glaser <t...@mirbsd.de> (supplier of updated mediawiki package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA384 Format: 1.8 Date: Thu, 20 Sep 2012 13:40:12 +0200 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.2-1 Distribution: unstable Urgency: low Maintainer: Mediawiki Maintenance Team <pkg-mediawiki-de...@lists.alioth.debian.org> Changed-By: Thorsten Glaser <t...@mirbsd.de> Description: mediawiki - website engine for collaborative work Closes: 686330 687519 Changes: mediawiki (1:1.19.2-1) unstable; urgency=low . [ Thorsten Glaser ] * New upstream: security fixes for CVE-2012-4377, CVE-2012-4378, CVE-2012-4379, CVE-2012-4380, CVE-2012-4381, CVE-2012-4382 (Closes: #686330) * Prevent <table></table> without any <tr /> inside, globally * Fix more cases of not checking $wgHtml5 * MW’s ID (XML) sanitiser is there for a reason, use it! * Prevent <ul></ul> without any <li /> inside in MonoBook * Fix invalid XHTML caused by code not honouring $wgHtml5 * Quell some PHP warnings from sloppy code * Do the wfSuppressWarnings patch used with FusionForge right * Add myself to Uploaders and quieten lintian a bit * Do not replace patched jquery-tablesorter with unpatched one; unbreaks sortable tables (Closes: #687519) * Update versioned Breaks against fusionforge and mw-extensions . [ Jonathan Wiltshire ] * Add Recommends on mediawiki-extensions-base and php-wikidiff2 Checksums-Sha1: c0282c4dd0b1dbda901eff5a448bca54170db811 2094 mediawiki_1.19.2-1.dsc 0e95a4c376bbcf77450adb1dca0180ac16da1b67 18266096 mediawiki_1.19.2.orig.tar.gz 5f62e4d9453031697cc82d7a89503aee1d72f61b 35216 mediawiki_1.19.2-1.debian.tar.gz eea6e35fd26a1845ad9d0d83b286f041aff3a0f7 17464904 mediawiki_1.19.2-1_all.deb Checksums-Sha256: 30457167ebf5c4f51709d5c9d5118139ae4d97f26efdaa95d49ded8cad2bf6bd 2094 mediawiki_1.19.2-1.dsc fe5b8de52e546767aee018bb3f2d50b64ffd6c914e145de46de6001ec6691a7e 18266096 mediawiki_1.19.2.orig.tar.gz f1d49ec385f8c5e0ed05bffc27e8a243b3270f03cc0f64ccb204818327a2b500 35216 mediawiki_1.19.2-1.debian.tar.gz fd7b3c10203c00abfef7a273670591ed53f1b0118eee87d97dc663480e5f7f32 17464904 mediawiki_1.19.2-1_all.deb Files: a215cb250daf2b119ebce3d77e8efcba 2094 web optional mediawiki_1.19.2-1.dsc 8b2546ab0b3991083fd49b1d0d96b26e 18266096 web optional mediawiki_1.19.2.orig.tar.gz 46741db6b5662dcccda2007e10988287 35216 web optional mediawiki_1.19.2-1.debian.tar.gz 8a1e2f838bdff9e026dd30951e241321 17464904 web optional mediawiki_1.19.2-1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MirBSD) iQIcBAEBCQAGBQJQWwZJAAoJEHa1NLLpkAfg0RsQANDxd+8URM1AbmrFnVjxteru 62E45+JmirMuVZw3MLB0EcP7PbCbKAN7UQUt28p1PSrF6wKF4ny1oB6Hlt/Nu+K6 GVY9nSprAYd0eUNUjbmEDV5+6kDxdCtSqXLQbTrtpddSRJ6Mj++iOoMQXBBKyI7g EnyRhVh1gfWRsHqQq940Be+AuhhhxTBJp0oe1MvrWs3FkPU9eI8bmWNuxpB7iWL8 dJ2VvEMujPIi5nH8wS+bQgRJbVLh/JakG/vEQSgd6lyi/EW/c/rAX0/Kzayt6+Ml 9VndFwhItyls7GbtJmvEeZv3aS97H2rvCaf78ngqbtujPV0BRy4y1fmVwJSC4mIM nI7waw8VwXPndcIaR5W7rHohpJwPbuhkkXusBWp5Eza5lqR7uylqa3h2OEUyxCk/ y8AtbhLbn9p/WOL69Ow3bWffWpM5PJNzQ9SEYb1en/aX0fb25usGPj2p/oH03pS6 avODNOqJiGVxXzvVcn8Sl/J2vG6fWb40ylTO9dY8xzL5+XtcV2C+Pgy3YOal2fSR Z3jpeWTUi0D9KQwEVMZXf8+jUf80oNfYY91Dyitk8/abgfHtsw6/T+Ihw/fJ8tUy 2AIcS3jyNB/IdbGj5Sa98w7OVQBizUMLnse5n9gAYmpSzwx5WyOjparuXEPSyuxh 6yBRjFgHYZqJEyM15IwY =qKrJ -----END PGP SIGNATURE-----
--- End Message ---
