Date: Fri, 21 Sep 2007 13:14:30 +0000 (UTC) From: Remko Lodder <remko@FreeBSD.org> To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/security/vuxml vuln.xml Message-ID: <200709211314.l8LDEU7J018701@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
remko 2007-09-21 13:14:30 UTC
FreeBSD ports repository (src,doc committer)
Modified files:
security/vuxml vuln.xml
Log:
Document mediawiki -- cross site scripting vulnerability, our port versions
had not been updated yet, 1.8.x is not vulnerable by default unless you are
using the $wgEnableAPI = true; statement, in that case please set it to
$wgEnableAPI = false; (where possible ofcourse, else upgrade to 1.8.5).
Revision Changes Path
1.1429 +37 -1 ports/security/vuxml/vuln.xml
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200709211314.l8LDEU7J018701>