summaryrefslogtreecommitdiff
path: root/RELEASE-NOTES-1.18
diff options
context:
space:
mode:
Diffstat (limited to 'RELEASE-NOTES-1.18')
-rw-r--r--RELEASE-NOTES-1.1833
1 files changed, 26 insertions, 7 deletions
diff --git a/RELEASE-NOTES-1.18 b/RELEASE-NOTES-1.18
index 01f750b2..9af5a1a5 100644
--- a/RELEASE-NOTES-1.18
+++ b/RELEASE-NOTES-1.18
@@ -3,15 +3,33 @@
Security reminder: MediaWiki does not require PHP's register_globals
setting since version 1.2.0. If you have it on, turn it '''off''' if you can.
-== MediaWiki 1.18.1 ==
-2012-01-11
-
-This a maintenance and security release of the MediaWiki 1.18 branch.
-
-=== Security changes ===
-* (bug 33117) prop=revisions allows deleted text to be exposed through cache pollution.
+== MediaWiki 1.18.2 ==
+2012-03-21
+
+This is a maintenance and security release of the MediaWiki 1.18 branch.
+
+== Changes since 1.18.1 ==
+
+* (bug 33686) could not get a list of contributor for an article when using
+ a SQLite database.
+* (Bug 33865) Exception thrown in action=parse when attempting to use the title
+ parameter without setting the text parameter.
+* UserMailer could potentially throw a fatal error when a MailAddress object had
+ an empty email address.
+* (Bug 33087) Exchange server rejected mail sent by MediaWiki
+* (bug 34528) Edit section tooltips show correction section name again
+* (bug 34246) MediaWiki:Whatlinkshere-summary message is displayed again in
+ Special:Whatlinkshere
+* (bug 22555) Remove or skip strip markers from tag hooks like <nowiki> in
+ core parser functions which operate on strings, such as formatnum.
+* (bug 34212) ApiBlock/ApiUnblock allow action to take place without a token
+ parameter present.
+* (bug 34907) Fixed exposure of tokens through load.php that could have facilitated
+ CSRF attacks.
+* (bug 35317) CSRF in Special:Upload.
=== Changes since 1.18.0 ===
+
* (bug 32712) Fix for search indexing of pages with certain unicode chars following URL.
* (bug 3901) Lang, hreflang attribs added to sidebar interlanguage links for screen readers.
* (bug 30774) mediawiki.html: Add support for numbers and booleans in the
@@ -37,6 +55,7 @@ This a maintenance and security release of the MediaWiki 1.18 branch.
all pages.
* Fixed recentchanges FK violation on page delete and cache purge error in updater
for Oracle DB.
+* (bug 33117) prop=revisions allows deleted text to be exposed through cache pollution.
== MediaWiki 1.18 ==
2011-11-24
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-10-03 15:22:17 +0000