-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2014-0166 2014-01-14 19:29:09 --------------------------------------------------------------------------------
Name : mediawiki119 Product : Fedora EPEL 6 Version : 1.19.10 Release : 1.el6 URL : http://www.mediawiki.org/ Summary : A wiki engine Description : MediaWiki is the software used for Wikipedia and the other Wikimedia Foundation websites. Compared to other wikis, it has an excellent range of features and support for high-traffic websites using multiple servers
-------------------------------------------------------------------------------- Update Information:
- Update to 1.19.10 - (bug 57550) (CVE-2013-6452) SECURITY: Disallow stylesheets in SVG Uploads - (bug 58088) (CVE-2013-6451) SECURITY: Don't normalize U+FF3C to \ in CSS Checks - (bug 58472) (CVE-2013-6454) SECURITY: Disallow -o-link in styles - (bug 58553) (CVE-2013-6453) SECURITY: Return error on invalid XML for SVG Uploads - (bug 58699) (CVE-2013-6472) SECURITY: Fix RevDel log entry information leaks
-------------------------------------------------------------------------------- References:
[ 1 ] Bug #1052874 - New mediawiki security releases have been released https://bugzilla.redhat.com/show_bug.cgi?id=1052874 --------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use su -c 'yum update mediawiki119' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------
epel-package-announce@lists.fedoraproject.org