http://localhost:8080/trac/ticket/816 <p> The <a class="ext-link" href="https://lists.wikimedia.org/pipermail/mediawiki-announce/2014-December/000173.html"><span class="icon">​</span>announcement email</a>: </p> <blockquote class="citation"> <p> I would like to announce the release of <a class="wiki" href="http://localhost:8080/trac/wiki/MediaWiki">MediaWiki</a> 1.24.1, 1.23.8, 1.22.15 and 1.19.23. This is a regular security and maintenance release. Download links are given at the end of this email. Please note this release marks the end of lifetime for <a class="wiki" href="http://localhost:8080/trac/wiki/MediaWiki">MediaWiki</a> 1.22 branch. </p> <h2 id="Securityfixesin1.24.11.23.81.22.15and1.19.23">Security fixes in 1.24.1, 1.23.8, 1.22.15 and 1.19.23</h2> <ul><li>(bug T76686) [SECURITY] thumb.php outputs wikitext message as raw HTML, which could lead to xss. Permission to edit <a class="wiki" href="http://localhost:8080/trac/wiki/MediaWiki">MediaWiki</a> namespace is required to exploit this. </li><li>(bug T77028) [SECURITY] Malicious site can bypass CORS restrictions in $wgCrossSiteAJAXdomains in API calls if it only included an allowed domain as part of its name. </li></ul><h2 id="Bugfixes">Bugfixes</h2> <ul><li>(bug T74222) The original patch for T74222 was reverted as unnecessary. </li><li>Fixed a couple of entries in RELEASE-NOTES-1.24. </li><li>(bug T76168) OutputPage: Add accessors for some protected properties. </li><li>(bug T74834) Make 1.24 branch directly installable under PostgreSQL. </li><li>Add missing $ in front of variable in OutputPage.php </li></ul><h2 id="Securityfixesinextensions">Security fixes in extensions</h2> <ul><li>(bug T77624) [SECURITY] Extension:Listings: missing validation in the 'name' and 'url' parameters. </li><li>(bug T73111) [SECURITY] Extension:ExpandTemplates: parses user input as wikitext and shows a preview, yet it fails to add an edit token to the form and check it. This can be exploited as an XSS when $wgRawHtml = true. Note this only affects the 1.19/1.22 branches. </li><li>(bug T76195) [SECURITY] Extension:TemplateSandbox: Special:TemplateSandbox needs edit token when raw HTML is allowed </li><li>(bug T69180) [SECURITY] Extension:Hovercards: XSS in text extracts. </li><li>(bug T73167) [SECURITY] Extension:Scribunto allows cross-origin leakage of data from a wiki through timing </li><li>(bug T71209) [SECURITY] Extension:TimedMediaHandler: Patch getid3 library for CVE-2014-2053. </li></ul><p> Full release notes for 1.23.8: <a class="ext-link" href="https://www.mediawiki.org/wiki/Release_notes/1.23"><span class="icon">​</span>https://www.mediawiki.org/wiki/Release_notes/1.23</a> </p> </blockquote> en-us /trac/chrome/site/TransitionNetwork-Logo-Web-Small.jpg http://localhost:8080/trac/ticket/816 Trac 0.12.5 chris Thu, 18 Dec 2014 11:29:25 GMT http://localhost:8080/trac/ticket/816#comment:1 http://localhost:8080/trac/ticket/816#comment:1 <ul> <li><strong>hours</strong> changed from <em>0.0</em> to <em>0.25</em> </li> <li><strong>status</strong> changed from <em>new</em> to <em>closed</em> </li> <li><strong>resolution</strong> set to <em>fixed</em> </li> <li><strong>totalhours</strong> changed from <em>0.0</em> to <em>0.25</em> </li> </ul> <p> Following the <a class="wiki" href="http://localhost:8080/trac/wiki/MediaWiki#Updates">wiki:MediaWiki#Updates</a> notes: </p> <pre class="wiki">sudo -i cd /web/wiki.transitionnetwork.org export MW="1.23.8" wget http://releases.wikimedia.org/mediawiki/1.23/mediawiki-$MW.tar.gz -O mediawiki-$MW.tar.gz wget http://releases.wikimedia.org/mediawiki/1.23/mediawiki-$MW.tar.gz.sig -O mediawiki-$MW.tar.gz.sig gpg --verify mediawiki-$MW.tar.gz.sig tar -zxvf mediawiki-$MW.tar.gz rsync -av mediawiki-$MW/ www/ chown root:root -R www/ chown -R www-data:www-data www/cache/ chown -R www-data:www-data www/images/ cd www/maintenance/ php update.php cd /web/wiki.transitionnetwork.org rm mediawiki-$MW.tar.gz mediawiki-$MW.tar.gz.sig rm -rf mediawiki-$MW </pre><p> The site was tested and all seems to be working fine so closing this ticket. </p> Ticket