Prep 1.43.1
Change-Id: I3744e15fcaa6727d9984acaa9da3ee60fe1cd038
This commit is contained in:
Reedy
parent
bfea732c5b
commit
cde4276870
2 changed files with 15 additions and 7 deletions
|
|
@ -7,9 +7,9 @@ PHP 8.4 workboard: https://phabricator.wikimedia.org/tag/php_8.4_support/
|
|||
|
||||
== MediaWiki 1.43.1 ==
|
||||
|
||||
THIS IS NOT A RELEASE YET
|
||||
This is a security and maintenance release of the MediaWiki 1.42 branch.
|
||||
|
||||
=== Changes since MediaWiki 1.43.1 ===
|
||||
=== Changes since MediaWiki 1.43.0 ===
|
||||
* Localisation updates.
|
||||
* (T375707) exception: Convert E_STRICT errors to E_USER_NOTICE.
|
||||
* (T380755) session: Do not set session.use_trans_sid.
|
||||
|
|
@ -39,7 +39,7 @@ THIS IS NOT A RELEASE YET
|
|||
* (T380880) ExternalLinks: fix mailto: links reversal.
|
||||
* (T381033) RateLimiter: Fix peek mode.
|
||||
* initEditCount: Join from user to actor to revision.
|
||||
* (T387130) Update wikimedia/parsoid to 0.20.2.
|
||||
* (T387130,CVE-2025-32699) SECURITY: Update wikimedia/parsoid to 0.20.2.
|
||||
* (T385519) Sanitizer::normalizeWhitespace warn on preg_replace error.
|
||||
* (T387638) RevDelList: Ensure setVisibility always includes itemStatuses in
|
||||
value if applicable.
|
||||
|
|
@ -62,9 +62,10 @@ THIS IS NOT A RELEASE YET
|
|||
* (T387690) upload: Suppress warnings from iconv().
|
||||
* (T388733) Sanitizer::normalizeWhitespace: simplify redundant preg_replace.
|
||||
* (T315573) Fix GREATEST usage in site_stats.
|
||||
* (T304474) Apply proper restrictions on file revert action.
|
||||
* (T24521, T62109, T140010) PermissionManager: Differentiate between cascading
|
||||
protection of file content and file pages.
|
||||
* (T304474, CVE-2025-32696) SECURITY: Apply proper restrictions on file revert
|
||||
action.
|
||||
* (T24521, T62109, T140010, CVE-2025-32697) SECURITY: PermissionManager:
|
||||
Differentiate between cascading protection of file content and file pages.
|
||||
* (T387507) ResourceLoader: update wikimedia/minify from 2.8.0 to 2.8.1.
|
||||
* (T388273, T388335) Upgrading pear/net_url2 (v2.2.2 => v2.2.3).
|
||||
* (T390063, T277675) ResourceLoader: update wikimedia/minify to 2.9.0.
|
||||
|
|
@ -79,6 +80,13 @@ THIS IS NOT A RELEASE YET
|
|||
* (T389028) block: Fix DBS::acquireTarget() race using GET_LOCK().
|
||||
* (T388807) LanguageConverter: Only set mTablesLoaded once they're really
|
||||
loaded.
|
||||
* RestrictionStore: Remove short-circuit mode when fetching cascading sources.
|
||||
* (T385958, CVE-2025-32698) SECURITY: LogPager.php: Restriction enforcer
|
||||
functions do not correctly enforce suppression restrictions.
|
||||
* (T387130, CVE-2025-32699) SECURITY: Potential javascript injection attack
|
||||
enabled by Unicode normalization in Action API.
|
||||
* (T358689, CVE-2025-3469) SECURITY: i18n XSS vulnerability in
|
||||
HTMLMultiSelectField when sections are used.
|
||||
|
||||
== MediaWiki 1.43.0 ==
|
||||
|
||||
|
|
|
|||
|
|
@ -34,7 +34,7 @@ use Wikimedia\Rdbms\IDatabase;
|
|||
*
|
||||
* @since 1.35 (also backported to 1.33.3 and 1.34.1)
|
||||
*/
|
||||
define( 'MW_VERSION', '1.43.0' );
|
||||
define( 'MW_VERSION', '1.43.1' );
|
||||
|
||||
/** @{
|
||||
* Obsolete IDatabase::makeList() constants
|
||||
|
|
|
|||
Loading…
Reference in a new issue