This bug was fixed in the package mediawiki - 1:1.12.0-2ubuntu0.4
---------------
mediawiki (1:1.12.0-2ubuntu0.4) intrepid-security; urgency=low
* SECURITY UPDATE: CSS validation issue allowing external images to be
included
into wikis where that is disallowed by conf. (LP: #537974)
- debian/patches/CSS-no-CVE_rev-63429.patch
- patch based on upstream SVN rev. 63429
-
http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html
* Fix regression in CVE-2009-0737.patch, where the database-specific options
will not be shown by default when installing mediawiki. (LP: #539697)
-- Andreas Wenning <[email protected]> Fri, 12 Mar 2010 11:51:32 +0100
** Changed in: mediawiki (Ubuntu)
Status: Triaged => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-0737
--
mediawiki hardy package does not support $wgDBprefix at installation time
https://bugs.launchpad.net/bugs/539697
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
