diff options
author | Joey Hess <joey@kodama.kitenet.net> | 2008-05-30 18:21:27 -0400 |
---|---|---|
committer | Joey Hess <joey@kodama.kitenet.net> | 2008-05-30 18:21:27 -0400 |
commit | 8d72885b47387721fec68a020ff0be6d6dd7a69b (patch) | |
tree | 2f3e95c9ad9d22cf2ee2a4b626803be7b4a25560 | |
parent | 1715c0399e3826edfef14e8fe76757ae1c9826fd (diff) |
releasing version 2.48
-rw-r--r-- | debian/NEWS | 2 | ||||
-rw-r--r-- | debian/changelog | 4 |
2 files changed, 3 insertions, 3 deletions
diff --git a/debian/NEWS b/debian/NEWS index 086798750..878489547 100644 --- a/debian/NEWS +++ b/debian/NEWS @@ -1,4 +1,4 @@ -ikiwiki (2.48) unstable; urgency=low +ikiwiki (2.48) unstable; urgency=high If you allowed password based logins to your wiki, those passwords were stored in cleartext in the userdb. To guard against exposing users' diff --git a/debian/changelog b/debian/changelog index 32d423ad4..0edd2ab33 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,8 +1,8 @@ -ikikiwiki (2.48) unstable; urgency=high +ikiwiki (2.48) unstable; urgency=high * Fix security hole that occurred if openid and passwordauth were both enabled. passwordauth would allow logging in as a known openid, with an - empty password. Closes: # + empty password. Closes: #483770 * Add rel=nofollow to edit links. This may prevent some spiders from pounding on the cgi following edit links. * passwordauth: If Authen::Passphrase is installed, use it to store |