fedora-security/extras-errata/errata FEDORA-EXTRAS-2007-005, 1.1, 1.2
Dennis Gilmore (ausil)
fedora-extras-commits at redhat.com
Tue Jan 9 18:36:38 UTC 2007
Author: ausil
Update of /cvs/fedora/fedora-security/extras-errata/errata
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv4141
Modified Files:
FEDORA-EXTRAS-2007-005
Log Message:
add mediawiki security release
Index: FEDORA-EXTRAS-2007-005
===================================================================
RCS file: /cvs/fedora/fedora-security/extras-errata/errata/FEDORA-EXTRAS-2007-005,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- FEDORA-EXTRAS-2007-005 9 Jan 2007 18:31:36 -0000 1.1
+++ FEDORA-EXTRAS-2007-005 9 Jan 2007 18:36:36 -0000 1.2
@@ -2,17 +2,29 @@
Fedora Update Notification
FEDORA-EXTRAS-2007-005
---------------------------------------------------------------------
-Product: Fedora Extras [4 5]
-Name:
-Version:
-Release:
-Summary:
+Product: Fedora Extras [5 6 devel]
+Name: mediawiki
+Version: 1.8.3
+Release: 7
+Summary: The PHP-based wiki software behind Wikipedia
Description:
+MediaWiki is the software used for Wikipedia (http://www.wikipedia.org) and
+the other Wikimedia Foundation websites. Compared to other wikis, it has a
+wide range of features and support for high-traffic websites using
+multiple servers.
---------------------------------------------------------------------
Update Information:
-<Fill me in>
+An XSS injection vulnerability was located in the AJAX support module,
+affecting MediaWiki 1.6.x and up when the optional setting $wgUseAjax
+is enabled.
+
+There is no danger in the default configuration, with $wgUseAjax off.
+
+* Tue Jan  9 2007 Axel Thimm <Axel.Thimm at ATrpms.net> - 1.8.3-7
+- Update to 1.8.3.
+- Update fixes an XSS injection vulnerability in the AJAX module.
---------------------------------------------------------------------
This update can be installed with the 'yum' update program. Use 'yum
More information about the scm-commits
mailing list