]> git.vanrenterghem.biz Git - git.ikiwiki.info.git/blobdiff - debian/changelog
projects / git.ikiwiki.info.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Revert "ikiwiki-mass-rebuild: Fix tty hijacking vulnerability by using su.
[git.ikiwiki.info.git] / debian / changelog
diff --git a/debian/changelog b/debian/changelog
index b4d502d009e12fed9d765b4c23d0c2aa15015006..f4cbc9812b8ff387b12ed5da8b90684c3b64ac27 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,18 @@
+ikiwiki (3.20100815.9) stable-security; urgency=high
+
+  * meta: Security fix; add missing sanitization of author and authorurl.
+    CVE-2012-0220 Thanks, Raúl Benencia
+  * po: Make po4a warn, not error on a malformed document. (intrigeri)
+
+ -- Joey Hess <joeyh@debian.org>  Wed, 16 May 2012 19:51:27 -0400
+
+ikiwiki (3.20100815.7) stable-security; urgency=high
+
+  * meta: Security fix; don't allow alternative stylesheets to be added on
+    pages where the htmlscrubber is enabled. CVE-2011-1401
+
+ -- Joey Hess <joeyh@debian.org>  Mon, 28 Mar 2011 12:35:13 -0400
+
 ikiwiki (3.20100815.6) testing; urgency=low
 
   * comments: Fix commenting, broken by security fix.
Unnamed repository; edit this file 'description' to name the repository.