Bug 91618 - www/mediawiki14 update to 1.4.13 (security update)
Summary: www/mediawiki14 update to 1.4.13 (security update)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: freebsd-ports-bugs (Nobody)
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-01-11 01:20 UTC by thomas
Modified: 2006-01-15 02:43 UTC (History)
0 users

See Also:


Attachments
file.diff (295 bytes, patch)
2006-01-11 01:20 UTC, thomas
no flags Details | Diff
file.diff (437 bytes, patch)
2006-01-11 01:20 UTC, thomas
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description thomas 2006-01-11 01:20:01 UTC
- MediaWiki 1.4.13 is a security maintenance release.

Detection for uploads of Windows Metafile (.wmf) images has been added
to help protect against a client-side vulnerability in unpatched Microsoft
Windows operating systems.

Sites which have enabled uploads and added non-standard file types
(such as .ogg, .doc, or .pdf) should upgrade to this release to ensure
that malicious .wmf files can't be uploaded with a fake extension;
such files could put visitors to the site at risk.

For more details on this, see:
http://en.wikipedia.org/wiki/Windows_Metafile_vulnerability

- Add sha256 checksum
Comment 1 Edwin Groothuis freebsd_committer freebsd_triage 2006-01-11 01:24:10 UTC
State Changed
From-To: open->feedback

Awaiting maintainers feedback
Comment 2 Gerrit Beine 2006-01-11 07:06:25 UTC
Edwin Groothuis wrote:
> Maintainer of www/mediawiki14,
> 
> Please note that PR ports/91618 has just been submitted.
> 
> If it contains a patch for an upgrade, an enhancement or a bug fix
> you agree on, reply to this email stating that you approve the patch
> and a committer will take care of it.
> 
> The full text of the PR can be found at:
>     http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/91618
> 
It's ok.

So long...

Gerrit
Comment 3 Pav Lucistnik freebsd_committer freebsd_triage 2006-01-15 02:31:32 UTC
State Changed
From-To: feedback->open

Approved.
Comment 4 Pav Lucistnik freebsd_committer freebsd_triage 2006-01-15 02:43:20 UTC
State Changed
From-To: open->closed

Committed, thanks!