headers
Brion Vibber | 9 Jan 2007 03:27
Picon
Favicon
Gravatar

MediaWiki 1.9.0rc1 available for testing


I've made a snapshot release candidate from 1.9 branch; this is a chance
to get a few more possible installation/upgrade regressions tested and
fixed.

A more widely announced 'final' 1.9.0 release will come after another
day or two.

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0RC1/phase3/RELEASE-NOTES

Download from:
http://sourceforge.net/project/showfiles.php?group_id=34373&package_id=93103

MD5 checksum: 55eb83d15a95db85ed002aace93a18d9
SHA-1 checksum: 1ee7d5ddc5b356288f7bdaa9b5800cb89a461216

-- brion vibber (brion  <at>  pobox.com / brion  <at>  wikimedia.org)
Permalink | Reply | 0 comments |
headers
Brion Vibber | 9 Jan 2007 09:24
Picon
Favicon
Gravatar

MediaWiki 1.6.9, 1.7.2, 1.8.3, 1.9.0rc2 released (security)


An XSS injection vulnerability was located in the AJAX support module,
affecting MediaWiki 1.6.x and up when the optional setting $wgUseAjax
is enabled.

There is no danger in the default configuration, with $wgUseAjax off.

If you are using an extension based on the optional Ajax module,
either disable it or upgrade to a version containing the fix:

* 1.9: fixed in 1.9.0rc2
* 1.8: fixed in 1.8.3
* 1.7: fixed in 1.7.2
* 1.6: fixed in 1.6.9

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0RC2/phase3/RELEASE-NOTES
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_8_3/phase3/RELEASE-NOTES
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_7_2/phase3/RELEASE-NOTES
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_6_9/phase3/RELEASE-NOTES

Download:
http://sourceforge.net/project/showfiles.php?group_id=34373

MD5 checksums:
747d79037d3b90494d7e8b956a6bb9a0  mediawiki-1.9.0rc2.tar.gz
9ef825abfcf0888b22571bbb097480f0  mediawiki-1.8.3.tar.gz
ef33231cb1689dc813f4b08e955f4b18  mediawiki-1.7.2.tar.gz
1ce42061b5f7ea6e4101826b969d2ee4  mediawiki-1.6.9.tar.gz
(Continue reading)

Permalink | Reply | 0 comments |
headers
Brion Vibber | 10 Jan 2007 22:10
Picon
Favicon
Gravatar

MediaWiki 1.9.0 released


January 10, 2007

MediaWiki 1.9.0 is the quarterly release snapshot for Winter 2007. While
the code has been running on Wikipedia for some time, installation and
upgrade bits may be less well tested. Bug fix releases may follow in the
coming days or weeks.

MediaWiki is now using a "continuous integration" development model with
quarterly snapshot releases. The latest development code is always kept
"ready to run", and in fact runs our own sites on Wikipedia.

Release branches will continue to receive security updates for about a
year from first release, but nonessential bugfixes and feature
development happen will be made on the development trunk and appear in
the next quarterly release.

Those wishing to use the latest code instead of a branch release can
obtain it from source control:
http://www.mediawiki.org/wiki/Download_from_SVN

1.9 includes a number of compatibility fixes since 1.8 as well as many
bug fixes and some new features, so all users who can run PHP 5 are
strongly encouraged to upgrade.

There are no changes from 1.9.0rc2 to 1.9.0 final except the version number.

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0/phase3/RELEASE-NOTES
(Continue reading)

Permalink | Reply | 0 comments |
headers
Brion Vibber | 24 Jan 2007 10:10
Picon
Favicon
Gravatar

MediaWiki 1.9.1 released


January 24, 2007

This is a bug-fix update that fixes some installation and upgrade issues
with the original 1.9.0 release.

* (bug 3000) Fall back to SCRIPT_NAME plus QUERY_STRING when REQUEST_URI
is not available, as on IIS with PHP-CGI
* Security fix for DjVu images. (Only affects servers where .djvu file
uploads are enabled and $wgDjvuToXML is set.)
* (bug 8638) Fix update from 1.4 and earlier
* (bug 8641) Fix order of updates to ipblocks table for updates from <=1.7
* (bug 8673) Minor fix for web service API content-type header
* Fix API revision list on PHP 5.2.1; bad reference assignment
* Fixed up the AjaxSearch
* Exclude settings files when generating documentation. That could
expose the database user and password to remote users.
* ar: fix the 'create a new page' on search page when no exact match found
* Correct tooltip accesskey hint for Opera on the Macintosh (uses
Shift-Esc-, not Ctrl-).
* (bug 8719) Firefox release notes lie! Fix tooltips for Firefox 2 on
x11; accesskeys default settings appear to be same as Windows.

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_1/phase3/RELEASE-NOTES

Download:
http://download.wikimedia.org/mediawiki/1.9/mediawiki-1.9.1.tar.gz
http://download.wikimedia.org/mediawiki/1.9/mediawiki-1.9.1.patch
(Continue reading)

Permalink | Reply | 0 comments |
headers
Brion Vibber | 9 Jan 2007 03:27
Picon
Favicon
Gravatar

MediaWiki 1.9.0rc1 available for testing


I've made a snapshot release candidate from 1.9 branch; this is a chance
to get a few more possible installation/upgrade regressions tested and
fixed.

A more widely announced 'final' 1.9.0 release will come after another
day or two.

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0RC1/phase3/RELEASE-NOTES

Download from:
http://sourceforge.net/project/showfiles.php?group_id=34373&package_id=93103

MD5 checksum: 55eb83d15a95db85ed002aace93a18d9
SHA-1 checksum: 1ee7d5ddc5b356288f7bdaa9b5800cb89a461216

-- brion vibber (brion  <at>  pobox.com / brion  <at>  wikimedia.org)
Permalink | Reply | 0 comments |
headers
Brion Vibber | 9 Jan 2007 09:24
Picon
Favicon
Gravatar

MediaWiki 1.6.9, 1.7.2, 1.8.3, 1.9.0rc2 released (security)


An XSS injection vulnerability was located in the AJAX support module,
affecting MediaWiki 1.6.x and up when the optional setting $wgUseAjax
is enabled.

There is no danger in the default configuration, with $wgUseAjax off.

If you are using an extension based on the optional Ajax module,
either disable it or upgrade to a version containing the fix:

* 1.9: fixed in 1.9.0rc2
* 1.8: fixed in 1.8.3
* 1.7: fixed in 1.7.2
* 1.6: fixed in 1.6.9

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0RC2/phase3/RELEASE-NOTES
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_8_3/phase3/RELEASE-NOTES
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_7_2/phase3/RELEASE-NOTES
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_6_9/phase3/RELEASE-NOTES

Download:
http://sourceforge.net/project/showfiles.php?group_id=34373

MD5 checksums:
747d79037d3b90494d7e8b956a6bb9a0  mediawiki-1.9.0rc2.tar.gz
9ef825abfcf0888b22571bbb097480f0  mediawiki-1.8.3.tar.gz
ef33231cb1689dc813f4b08e955f4b18  mediawiki-1.7.2.tar.gz
1ce42061b5f7ea6e4101826b969d2ee4  mediawiki-1.6.9.tar.gz
(Continue reading)

Permalink | Reply | 0 comments |
headers
Brion Vibber | 10 Jan 2007 22:10
Picon
Favicon
Gravatar

MediaWiki 1.9.0 released


January 10, 2007

MediaWiki 1.9.0 is the quarterly release snapshot for Winter 2007. While
the code has been running on Wikipedia for some time, installation and
upgrade bits may be less well tested. Bug fix releases may follow in the
coming days or weeks.

MediaWiki is now using a "continuous integration" development model with
quarterly snapshot releases. The latest development code is always kept
"ready to run", and in fact runs our own sites on Wikipedia.

Release branches will continue to receive security updates for about a
year from first release, but nonessential bugfixes and feature
development happen will be made on the development trunk and appear in
the next quarterly release.

Those wishing to use the latest code instead of a branch release can
obtain it from source control:
http://www.mediawiki.org/wiki/Download_from_SVN

1.9 includes a number of compatibility fixes since 1.8 as well as many
bug fixes and some new features, so all users who can run PHP 5 are
strongly encouraged to upgrade.

There are no changes from 1.9.0rc2 to 1.9.0 final except the version number.

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0/phase3/RELEASE-NOTES
(Continue reading)

Permalink | Reply | 0 comments |
headers
Brion Vibber | 24 Jan 2007 10:10
Picon
Favicon
Gravatar

MediaWiki 1.9.1 released


January 24, 2007

This is a bug-fix update that fixes some installation and upgrade issues
with the original 1.9.0 release.

* (bug 3000) Fall back to SCRIPT_NAME plus QUERY_STRING when REQUEST_URI
is not available, as on IIS with PHP-CGI
* Security fix for DjVu images. (Only affects servers where .djvu file
uploads are enabled and $wgDjvuToXML is set.)
* (bug 8638) Fix update from 1.4 and earlier
* (bug 8641) Fix order of updates to ipblocks table for updates from <=1.7
* (bug 8673) Minor fix for web service API content-type header
* Fix API revision list on PHP 5.2.1; bad reference assignment
* Fixed up the AjaxSearch
* Exclude settings files when generating documentation. That could
expose the database user and password to remote users.
* ar: fix the 'create a new page' on search page when no exact match found
* Correct tooltip accesskey hint for Opera on the Macintosh (uses
Shift-Esc-, not Ctrl-).
* (bug 8719) Firefox release notes lie! Fix tooltips for Firefox 2 on
x11; accesskeys default settings appear to be same as Windows.

Full release notes:
http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_1/phase3/RELEASE-NOTES

Download:
http://download.wikimedia.org/mediawiki/1.9/mediawiki-1.9.1.tar.gz
http://download.wikimedia.org/mediawiki/1.9/mediawiki-1.9.1.patch
(Continue reading)

Permalink | Reply | 0 comments |

Gmane