Mglaser has uploaded a new change for review. https://gerrit.wikimedia.org/r/176213
Change subject: Updated release notes and version number for MediaWiki 1.19.22 ...................................................................... Updated release notes and version number for MediaWiki 1.19.22 This is MediaWiki 1.19.22 security and maintenance release. Change-Id: I9b4fcbc7d00b8a64f8444e902aab4a5ce28886d3 --- M RELEASE-NOTES-1.19 M includes/DefaultSettings.php 2 files changed, 12 insertions(+), 1 deletion(-) git pull ssh://gerrit.wikimedia.org:29418/mediawiki/core refs/changes/13/176213/1 diff --git a/RELEASE-NOTES-1.19 b/RELEASE-NOTES-1.19 index a0f6eb8..639a995 100644 --- a/RELEASE-NOTES-1.19 +++ b/RELEASE-NOTES-1.19 @@ -9,6 +9,17 @@ === Changes since 1.19.21 === +* (bugs 66776, 71478) SECURITY: User PleaseStand reported a way to inject code + into API clients that used format=php to process pages that underwent flash + policy mangling. This was fixed along with improving how the mangling was done + for format=json, and allowing sites to disable the mangling using + $wgMangleFlashPolicy. +* (bug 72222) SECURITY: Do not show log action when the entry is revdeleted with + DELETED_ACTION. NOTICE: this may be reverted in a future release pending a + public RFC about the desired functionality. This issue was reported by user + Bawolff. +* (bug 71621) Make allowing site-wide styles on restricted special pages a + config option. * $wgMangleFlashPolicy was added to make MediaWiki's mangling of anything that might be a flash policy directive configurable. diff --git a/includes/DefaultSettings.php b/includes/DefaultSettings.php index 04f20f8..1033224 100644 --- a/includes/DefaultSettings.php +++ b/includes/DefaultSettings.php @@ -33,7 +33,7 @@ /** @endcond */ /** MediaWiki version number */ -$wgVersion = '1.19.21'; +$wgVersion = '1.19.22'; /** Name of the site. It must be changed in LocalSettings.php */ $wgSitename = 'MediaWiki'; -- To view, visit https://gerrit.wikimedia.org/r/176213 To unsubscribe, visit https://gerrit.wikimedia.org/r/settings Gerrit-MessageType: newchange Gerrit-Change-Id: I9b4fcbc7d00b8a64f8444e902aab4a5ce28886d3 Gerrit-PatchSet: 1 Gerrit-Project: mediawiki/core Gerrit-Branch: REL1_19 Gerrit-Owner: Mglaser <[email protected]> _______________________________________________ MediaWiki-commits mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits
