Ubuntu
mediawiki package

mediawiki hardy package does not support $wgDBprefix at installation time

Bug #539697 reported by Rolf Leggewie on 2010-03-16

6

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	mediawiki (Ubuntu)	Fix Released	Medium	Unassigned

Bug Description

Binary package hint: mediawiki

When setting up a new installation of mediawiki, there usually is a little box somewhere on the bottom of http://$mwIP/config/ to specify a table prefix (mediawiki uses the $wgDBprefix variable for that). I don't see that when I create a new site on a hardy host running the latest 1.11.2-2ubuntu0.3 package. Confirmations welcome.

Tags:

Related branches

lp:ubuntu/hardy-security/mediawiki

lp:ubuntu/intrepid-security/mediawiki

CVE References

2009-0737

Revision history for this message

Rolf Leggewie (r0lf) wrote on 2010-03-16:

#1

I was able to confirm this to be a regression from the security release. 1.11.2-2 still works fine.

Rolf Leggewie (r0lf) on 2010-03-16

Changed in mediawiki (Ubuntu):
importance:	Undecided → Medium
status:	New → Triaged

Revision history for this message

Rolf Leggewie (r0lf) wrote on 2010-03-16:

#2

I installed the earlier releases in hardy and verified that this was still fine in 1.11.2-2ubuntu0.2. https://launchpad.net/ubuntu/+archive/primary/+files/mediawiki_1:1.11.2-2ubuntu0.2_1:1.11.2-2ubuntu0.3.diff.gz is the relevant debdiff.

Revision history for this message

Andreas Wenning (andreas-wenning) wrote on 2010-03-16:

#3

Found the regression; i'll see if it can be fixed together with the newest security-upload in progress in bug 537974.

Revision history for this message

Rolf Leggewie (r0lf) wrote on 2010-03-16:

#4

great, thank you very much

Revision history for this message

Launchpad Janitor (janitor) wrote on 2010-03-16:

#5

This bug was fixed in the package mediawiki - 1:1.12.0-2ubuntu0.4

---------------
mediawiki (1:1.12.0-2ubuntu0.4) intrepid-security; urgency=low

  * SECURITY UPDATE: CSS validation issue allowing external images to be included
    into wikis where that is disallowed by conf. (LP: #537974)
    - debian/patches/CSS-no-CVE_rev-63429.patch
    - patch based on upstream SVN rev. 63429
    - http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html
  * Fix regression in CVE-2009-0737.patch, where the database-specific options
    will not be shown by default when installing mediawiki. (LP: #539697)
-- Andreas Wenning <email address hidden> Fri, 12 Mar 2010 11:51:32 +0100

Changed in mediawiki (Ubuntu):
status:	Triaged → Fix Released

Revision history for this message

Andreas Wenning (andreas-wenning) wrote on 2010-03-17:

#6

This bug was fixed in the package mediawiki - 1:1.11.2-2ubuntu0.4
---------------
mediawiki (1:1.11.2-2ubuntu0.4) hardy-security; urgency=low
  * SECURITY UPDATE: CSS validation issue allowing external images to be included
     into wikis where that is disallowed by conf. (LP: #537974)
     - debian/patches/CSS-no-CVE_rev-63429.patch
     - patch based on upstream SVN rev. 63429
     - http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html
   * Fix regression in CVE-2009-0737.patch, where the database-specific options
     will not be shown by default when installing mediawiki. (LP: #539697)

Revision history for this message

Rolf Leggewie (r0lf) wrote on 2010-03-17:

#7

I'm happy to confirm that this is indeed fixed in the hardy package.

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.