https://bugzilla.wikimedia.org/show_bug.cgi?id=10967
--- Comment #19 from Tim Starling <[email protected]> 2009-06-23 03:43:11 UTC --- (In reply to comment #14) > Looks like we've currently got a patched 1.0.7.19 in there... only difference > seems to be some regex fixes (I presume for anti-DoS purposes, that's the sort > of thing Tim would fix ;) and those changes are present in the release that's > checked out. The version of GeSHi we're using was reviewed for security by me. I fixed several regexes that were vulnerable to algorithmic DoS attack and submitted the patches upstream. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
