Пакет mediawiki-php7: Информация
Бинарный пакет: mediawiki-php7
Версия: 1.40.1-alt2
Архитектура: noarch
Собран: 1 февраля 2024 г. 19:55
Исходный пакет: mediawiki
Категория: Сети/WWW
Сообщить об ошибке в пакетеДомашняя страница: http://www.mediawiki.org/
Лицензия: GPLv2+
О пакете: Mediawiki's requires for php 7.4
Описание:
MediaWiki is the software used for Wikipedia and the other Wikimedia Foundation websites. Compared to other wikis, it has an excellent range of features and support for high-traffic websites using multiple servers. This package contains all needed php7 requires.
Сопровождающий: Vitaly Lipatov
Последнее изменение
21 октября 2023 г. Vitaly Lipatov 1.40.1-alt2
- fix descriptions of php subpackages - restore .htaccess to disable php execution in data only dirs
16 октября 2023 г. Vitaly Lipatov 1.40.1-alt1
- new version 1.40.1 (with rpmrb script) - build with php8.2 by default (ALT bug 48033) - (T333050, CVE-2023-45363) SECURITY: Fix infinite loop for self-redirects with variants conversion. - (T340217, CVE-2023-45359) SECURITY: Vector 2022: Numerous unescaped messages leading to potential XSS. - (T340220, CVE-2023-45361) SECURITY: Vector 2022: vector-intro-page message is assumed to yield a valid title. - (T340221, CVE-2023-45360) SECURITY: XSS via 'youhavenewmessagesmanyusers' and 'youhavenewmessages' messages. - (T341529, CVE-2023-45362) SECURITY: diff-multi-sameuser ("X intermediate revisions by the same user not shown") ignores username suppression. - (T341565, CVE-2023-3550) SECURITY: Stored XSS when uploading crafted XML file to Special:Upload (non standard configuration).
12 августа 2023 г. Vitaly Lipatov 1.40.0-alt1
- new version 1.40.0 (with rpmrb script) - disable AutoReq - (T335612, CVE-2023-36674) SECURITY: Move badFile lookup to Linker. - (T335203, CVE-2023-29197) Upgrade guzzlehttp/psr7 to >= 1.9.1/2.4.5. - (T335612, CVE-2023-36674) Manualthumb bypasses badFile lookup. - (T332889, CVE-2023-36675) XSS in BlockLogFormatter due to unsafe message use.