-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
MediaWiki 1.3.7 is a security update, which contains a fix for an additional cross-site scripting vulnerability discovered during a code review. All MediaWiki users are strongly urged to upgrade to this latest release.
(Users already running 1.3.6 need copy in only the updated DefaultSettings.php and Title.php. Versions before 1.3.6 are vulnerable to a number of other security bugs, so please upgrade!)
Changes from 1.3.6: * Fix protected-page related security issue.
Release notes: http://sourceforge.net/project/shownotes.php?release_id=275934
Download: http://prdownloads.sf.net/wikipedia/mediawiki-1.3.7.tar.gz?download
Wiki admin help mailing list: http://mail.wikipedia.org/mailman/listinfo/mediawiki-l
Bug report system: http://bugzilla.wikipedia.org/
Play "stump the developers" live on IRC: #mediawiki on irc.freenode.net
- -- brion vibber (brion @ pobox.com)
On Monday 18 October 2004 03:28, Brion Vibber wrote:
(Users already running 1.3.6 need copy in only the updated DefaultSettings.php and Title.php.
I suggest that a list of changed files should be present in every revision of MediaWiki, either at the website or inside the tar.gz.
mediawiki-l@lists.wikimedia.org