MediaWiki 1.16.2

[autoinstallsdev/mediawiki.git] / RELEASE-NOTES

diff --git a/RELEASE-NOTES b/RELEASE-NOTES
index 4afdef4709be61af002343ef05918cdc55f60748..71534ca4a200b24cef59625855ecf9072831f106 100644 (file)
--- a/RELEASE-NOTES
+++ b/RELEASE-NOTES
@@ -1,8 +1,8 @@
 = MediaWiki release notes =
 
 = MediaWiki release notes =
 

-== MediaWiki 1.16.1 ==
+== MediaWiki 1.16.2 ==

 
 

-2011-01-04
+2011-02-01

 
 This is a security and maintenance release of the MediaWiki 1.16 branch.
 
 
 This is a security and maintenance release of the MediaWiki 1.16 branch.
 


@@ -44,6 +44,16 @@ set $wgCacheDirectory to a writable path on the local filesystem. Make sure
 you have the DBA extension for PHP installed, this will improve performance 
 further.
 
 you have the DBA extension for PHP installed, this will improve performance 
 further.
 

+== Changes since 1.16.1 ==
+
+* (bug 26642) Fixed incorrect translated namespace due to a regression in the
+  language converter.
+* The interface translations were updated.
+* (bug 27093, CVE-2011-0047): Fixed CSS injection vulnerability.
+* (bug 27094) Fixed server-side arbitrary script inclusion vulnerability. 
+  Affects Windows servers only. A malicious file with extension ".php" must 
+  exist on the server for the exploit to be effective.
+

 == Changes since 1.16.0 ==
 
 * (bug 24981) Allow extensions to access SpecialUpload variables again
 == Changes since 1.16.0 ==
 
 * (bug 24981) Allow extensions to access SpecialUpload variables again