This bug was fixed in the package mediawiki - 1:1.12.0-2ubuntu0.3 --------------- mediawiki (1:1.12.0-2ubuntu0.3) intrepid-security; urgency=low
* SECURITY UPDATE: Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php). (LP: #348858) - CVE-2009-0737 - debian/patches/CVE-2009-0737.patch - patch taken directly from Debian - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514547 - http://lists.wikimedia.org/pipermail/mediawiki-announce/2009-February/000083.html -- Andreas Wenning <a...@awen.dk> Thu, 26 Mar 2009 09:33:41 +0100 ** Changed in: mediawiki (Ubuntu Intrepid) Status: Fix Committed => Fix Released ** Changed in: mediawiki (Ubuntu Hardy) Status: Fix Committed => Fix Released -- CVE-2009-0737 Multiple cross-site scripting (XSS) vulnerabilities in the web-based installer (config/index.php) https://bugs.launchpad.net/bugs/348858 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs