aboutsummaryrefslogtreecommitdiff
path: root/doc/security.mdwn
Commit message (Expand)AuthorAge
* Note another Debian 8 backportSimon McVittie2017-01-12
* Fix typoSimon McVittie2017-01-11
* Document the security fix soon to be released in 3.20170111Simon McVittie2017-01-11
* news: Use Debian security tracker instead of MITRE for CVE referencesSimon McVittie2017-01-09
* add anchors for use in advisory to oss-securitysmcv2016-12-29
* Clarify which versions of ikiwiki fixed CVE-2016-9645, -9646Simon McVittie2016-12-29
* Add CVE references for CVE-2016-9646, CVE-2016-9645Simon McVittie2016-12-29
* Try revert operations (on a branch) before approving themSimon McVittie2016-12-28
* Force CGI::FormBuilder->field to scalar context where necessarySimon McVittie2016-12-28
* Add CVE references for CVE-2016-10026Simon McVittie2016-12-21
* Announce 3.20161219Simon McVittie2016-12-19
* Opt in to whatever spam this may bring.Amitai Schleier2016-12-19
* List security contactsSimon McVittie2016-12-19
* Revert spamSimon McVittie2016-08-22
* update for rename of recentchanges.mdwn to __8226____9__Get_CAll___64___1__42...jhakasbaba76@c741fb7726e8ce4a230bc1a0d48fbeb496e46f892016-08-22
* Announce 3.20160728Simon McVittie2016-07-28
* mention that the CVE-2016-4561 fix was backportedsmcv2016-05-09
* Add CVE referenceSimon McVittie2016-05-06
* Document the security fixes in this releaseSimon McVittie2016-05-06
* revert link spamsmcv2015-10-04
* (no commit message)ketariman2015-10-04
* add more details of CVE-2015-2793smcv2015-04-14
* update for recent XSSJoey Hess2015-03-30
* update ikiwiki-update-wikilist docs to suggest putting it in /etc/sudoersJoey Hess2012-08-09
* some details about past security holeJoey Hess2012-05-17
* typoJoey Hess2012-05-16
* cveJoey Hess2012-05-16
* meta: Security fix; add missing sanitization of author and authorurl. Thanks,...Joey Hess2012-05-16
* ikiwiki-mass-rebuild: Fix tty hijacking vulnerability by using su. (Once su's...Joey Hess2011-06-08
* 404 automatically loads gotoJoey Hess2011-06-08
* CVE assignedJoey Hess2011-03-28
* use real nameGiuseppe Bilotta2011-03-28
* severity analysis updateJoey Hess2011-03-28
* releasing version 3.20110328Joey Hess2011-03-28
* meta: Security fix; don't allow alternative stylesheets to be added on pages ...Joey Hess2011-03-28
* Fix typo: s/insertation/insertion/gJosh Triplett2011-03-09
* backportJoey Hess2011-01-22
* releasing version 3.20110122Joey Hess2011-01-22
* document XSSJoey Hess2011-01-22
* CVE idJoey Hess2010-11-12
* releasing version 3.20101112Joey Hess2010-11-12
* security issueJoey Hess2010-11-12
* update re template changeJoey Hess2010-04-23
* Despam, again. Someone ban adrianna please?Simon McVittie2010-04-02
* (no commit message)adrianna2010-04-02
* htmlscrubber: Security fix: In data:image/* uris, only allow a few whiteliste...Joey Hess2010-03-12
* CVEJoey Hess2009-08-30
* still mispelling josh's name..Joey Hess2009-08-30
* teximg security problemJoey Hess2009-08-30
* Fix version.JoshTriplett2008-12-31