http://localhost:8080/trac/ticket/506 <p> Announcement: </p> <blockquote class="citation"> <p> I would like to announce the release of MediaWiki 1.20.3 and 1.19.4. These releases fix 3 security related bugs that could affect users of MediaWiki. Download links are given at the end of this email. </p> <ul><li>By default, the curl library passed 'true' to CURLOPT_SSL_VERIFYHOST when establishing an SSL connection, instead of '2'. <a class="ext-link" href="https://bugzilla.wikimedia.org/show_bug.cgi?id=44135"><span class="icon">​</span>https://bugzilla.wikimedia.org/show_bug.cgi?id=44135</a> <a class="ext-link" href="https://bugzilla.wikimedia.org/show_bug.cgi?id=42441"><span class="icon">​</span>https://bugzilla.wikimedia.org/show_bug.cgi?id=42441</a> </li></ul><ul><li>MediaWiki developer Krenair discovered that the full user object, including password hash, could be returned when unblocking a user by the API. Exploitation of this vulnerability requires the user to have permissions to unblock users, by default this is limited to users in the sysop group. <a class="ext-link" href="https://bugzilla.wikimedia.org/show_bug.cgi?id=43518"><span class="icon">​</span>https://bugzilla.wikimedia.org/show_bug.cgi?id=43518</a> </li></ul><ul><li>MediaWiki developer Platonides discovered that the maintenance script mwdoc-filter.php did not check if it was being run via the CLI, and could allow an attacker to read arbitrary files if PHP's register_globals was enabled and the .htaccess file in the maintenance directory, which by default denies access for all users, was disabled. <a class="ext-link" href="https://bugzilla.wikimedia.org/show_bug.cgi?id=45355"><span class="icon">​</span>https://bugzilla.wikimedia.org/show_bug.cgi?id=45355</a> </li></ul><p> Full release notes for 1.19.4: <a class="ext-link" href="https://www.mediawiki.org/wiki/Release_notes/1.19"><span class="icon">​</span>https://www.mediawiki.org/wiki/Release_notes/1.19</a> </p> </blockquote> <p> <a class="ext-link" href="http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-March/000125.html"><span class="icon">​</span>http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-March/000125.html</a> </p> en-us /trac/chrome/site/TransitionNetwork-Logo-Web-Small.jpg http://localhost:8080/trac/ticket/506 Trac 0.12.5 chris Mon, 04 Mar 2013 19:47:57 GMT http://localhost:8080/trac/ticket/506#comment:1 http://localhost:8080/trac/ticket/506#comment:1 <ul> <li><strong>hours</strong> changed from <em>0.0</em> to <em>0.1</em> </li> <li><strong>totalhours</strong> changed from <em>0.0</em> to <em>0.1</em> </li> </ul> Ticket chris Mon, 04 Mar 2013 20:05:45 GMT http://localhost:8080/trac/ticket/506#comment:2 http://localhost:8080/trac/ticket/506#comment:2 <ul> <li><strong>hours</strong> changed from <em>0.0</em> to <em>0.25</em> </li> <li><strong>totalhours</strong> changed from <em>0.1</em> to <em>0.35</em> </li> </ul> <p> Following the last upgrade, <a class="closed ticket" href="http://localhost:8080/trac/ticket/470#comment:11" title="maintenance: Penguin install and configuration (closed: fixed)">ticket:470#comment:11</a> </p> <pre class="wiki">cd /web/wiki.transitionnetwork.org/ wget http://download.wikimedia.org/mediawiki/1.19/mediawiki-1.19.4.tar.gz wget http://download.wikimedia.org/mediawiki/1.19/mediawiki-1.19.4.tar.gz.sig gpg --verify mediawiki-1.19.4.tar.gz.sig gpg: Signature made Mon Mar 4 18:12:00 2013 GMT using DSA key ID 62D84F01 gpg: Good signature from "Chris Steipp &lt;csteipp@wikimedia.org&gt;" tar -zxvf mediawiki-1.19.4.tar.gz rsync -av mediawiki-1.19.4/ www/ cd www/maintenance/ php update.php cd .. chown root:root -R www/ cd www chown -R www-data:www-data cache chown -R www-data:www-data images </pre><p> And now we are running the latest version of 1.19: <a class="ext-link" href="https://wiki.transitionnetwork.org/Special:Version"><span class="icon">​</span>https://wiki.transitionnetwork.org/Special:Version</a> and the docs have been updated, <a class="wiki" href="http://localhost:8080/trac/wiki/PenguinServer#wiki.transitionnetwork.org">wiki:PenguinServer#wiki.transitionnetwork.org</a> and also the duplicate ticket has been closed, <a class="closed ticket" href="http://localhost:8080/trac/ticket/505" title="maintenance: Critical Mediawiki security upgrade (closed: fixed)">ticket:505</a> </p> Ticket chris Mon, 04 Mar 2013 20:06:09 GMT http://localhost:8080/trac/ticket/506#comment:3 http://localhost:8080/trac/ticket/506#comment:3 <ul> <li><strong>status</strong> changed from <em>new</em> to <em>closed</em> </li> <li><strong>resolution</strong> set to <em>fixed</em> </li> </ul> Ticket