[SECURITY] Fedora 7 Update: mediawiki-1.9.4-35.fc7

updates at fedoraproject.org updates at fedoraproject.org
Tue Sep 18 19:20:34 UTC 2007


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-2189
2007-09-18 03:22:32
--------------------------------------------------------------------------------

Name        : mediawiki
Product     : Fedora 7
Version     : 1.9.4
Release     : 35.fc7
URL         : http://wikipedia.sourceforge.net/
Summary     : A wiki engine
Description :
MediaWiki is the software used for Wikipedia and the other Wikimedia
Foundation websites. Compared to other wikis, it has an excellent
range of features and support for high-traffic websites using multiple
servers

This package supports wiki farms. Copy /var/www/wiki over to the
desired wiki location and configure it through the web
interface. Remember to remove the config dir after completing the
configuration.

--------------------------------------------------------------------------------
Update Information:

Update to 1.9.4 to fix cross site scripting vulnerability in API pretty-printing mode.

More info: http://secunia.com/advisories/26772/
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 12 2007 Ville Skyttä <ville.skytta at iki.fi> - 1.9.4-35
- Update to 1.9.4 (security; http://secunia.com/advisories/26772/, #287881)
* Mon Aug  6 2007 Axel Thimm <Axel.Thimm at ATrpms.net> - 1.9.3-34.0.1
- Bump release to please koji/CVS.
* Thu Feb 22 2007 Axel Thimm <Axel.Thimm at ATrpms.net> - 1.9.3-34
- Update to 1.9.3.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #287881 - CVE-2007-4828 mediawiki cross-site scripting vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=287881
  [ 2 ] CVE-2007-4828
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4828
--------------------------------------------------------------------------------
Updated packages:

c1813c9ceac403e56f6f7c1a7107627d1119edab mediawiki-debuginfo-1.9.4-35.fc7.i386.rpm
36f09da786ba48f2bae631f12eebd92c57af9798 mediawiki-1.9.4-35.fc7.i386.rpm
6b52f49d8b92e97a897e59d4be023ddf219e1f95 mediawiki-debuginfo-1.9.4-35.fc7.x86_64.rpm
7fa49ebec6e029247a5a0594ca5214afee358254 mediawiki-1.9.4-35.fc7.x86_64.rpm
b5e590251fa3d0fae390b4291cd05ef6ba0228b7 mediawiki-debuginfo-1.9.4-35.fc7.ppc.rpm
a2af54bdb142509aa6718f8c402c0512e2f3a801 mediawiki-1.9.4-35.fc7.ppc.rpm
c542527bdc2a573182423e3dbce4fd8d7163faec mediawiki-1.9.4-35.fc7.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update mediawiki' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------




More information about the package-announce mailing list