Brion Vibber | 21 Sep 21:52 2005
Picon

MediaWiki 1.3.16, 1.4.10 released [SECURITY]


MediaWiki 1.4.10 and 1.3.16 are security maintenance releases. A bug in
edit submission handling could cause corruption of the previous revision
in the database if an abnormal URL was used, such as those used by some
spambots.

Affected releases:
* 1.4.x <= 1.4.9; fixed in 1.4.10
* 1.3.x <= 1.3.15; fixed in 1.3.16

1.5 release candidates are not affected by this problem.

All publicly editable wikis are strongly recommended to upgrade
immediately. 1.4 releases can be manually patched by changing this bit
in EditPage.php:

~    function importFormData( &$request ) {
~        if( $request->wasPosted() ) {

to:

~    function importFormData( &$request ) {
~        if( $request->getVal( 'action' ) == 'submit' &&
~            $request->wasPosted() ) {

1.3 releases can be manually patched by changing this bit in EditPage.php:

~    if( $this->tokenOk( $request ) ) {
~        $this->save    = $request->wasPosted() && !$this->preview;
~    } else {
(Continue reading)


Gmane