From c1289de1eff4c0b4b2cd47e61b2273970e327009 Mon Sep 17 00:00:00 2001 From: Joey Hess Date: Sat, 31 May 2008 20:16:18 -0400 Subject: cve id --- doc/news/version_2.48.mdwn | 1 + 1 file changed, 1 insertion(+) (limited to 'doc/news') diff --git a/doc/news/version_2.48.mdwn b/doc/news/version_2.48.mdwn index a0c52f4e8..76dbd7ddc 100644 --- a/doc/news/version_2.48.mdwn +++ b/doc/news/version_2.48.mdwn @@ -13,6 +13,7 @@ ikiwiki 2.48 released with [[toggle text="these changes"]] * Fix security hole that occurred if openid and passwordauth were both enabled. passwordauth would allow logging in as a known openid, with an empty password. Closes: #[483770](http://bugs.debian.org/483770) + (CVE-2008-0169) * Add rel=nofollow to edit links. This may prevent some spiders from pounding on the cgi following edit links. * passwordauth: If Authen::Passphrase is installed, use it to store -- cgit v1.2.3