Dear DokuWiki friends
A Hotfix release 2017-02-19d of the codenamed "Frusterick Manners"
version of DokuWiki is available. It fixes two XSS vulnerabilities of
the code described in issue 2080[1] (CVE-2017-12979[2]) and in issue
2081[3] (CVE-2017-12980[4]). According to our release policy, the prior
version (Elenor of Tsort) has also been patched with the security fixes
and a Hotfix release 2016-06-26d is also available.
Get the Hotfix releases from http://dokuwiki.org/ or directly from the
download zone http://download.dokuwiki.org/.
Enjoy DokuWiki!
[1] https://github.com/splitbrain/dokuwiki/issues/2080
[2] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12979
[3] https://github.com/splitbrain/dokuwiki/issues/2081
[4] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12980
--
bug
for the DokuWiki team
--
DokuWiki mailing list - more info at
http://www.dokuwiki.org/mailinglist