diff options
| author | Simon McVittie <smcv@debian.org> | 2016-12-19 17:25:35 +0000 |
|---|---|---|
| committer | Simon McVittie <smcv@debian.org> | 2016-12-19 18:21:07 +0000 |
| commit | 592c13cc6169554b075406dae9ca90cdba183fbd (patch) | |
| tree | f09a9a0f5eddad69cc53da92f225589ad1a56f31 /debian | |
| parent | cde2cc18624cb877cc9a9f43d7ae75fb1217008b (diff) | |
| download | ikiwiki-592c13cc6169554b075406dae9ca90cdba183fbd.tar ikiwiki-592c13cc6169554b075406dae9ca90cdba183fbd.tar.gz | |
Update changelog
Diffstat (limited to 'debian')
| -rw-r--r-- | debian/changelog | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index ec15142b4..a10770548 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,8 +1,18 @@ ikiwiki (3.20160906) UNRELEASED; urgency=medium + [ Joey Hess ] * inline: Prevent creating a file named ".mdwn" when the postform is submitted with an empty title. + [ Simon McVittie ] + * Security: tell `git revert` not to follow renames. If it does, then + renaming a file can result in a revert writing outside the wiki srcdir + or altering a file that the reverting user should not be able to alter, + an authorization bypass. Thanks, intrigeri + * cgitemplate: remove some dead code. Thanks, blipvert + * Restrict CSS matches against header class to not break + Pandoc tables with header rows. Thanks, karsk + -- Joey Hess <id@joeyh.name> Wed, 21 Sep 2016 13:48:32 -0400 ikiwiki (3.20160905) unstable; urgency=medium |