mahara-contributors team mailing list archive

Thread
Date

[Bug 1266976] Re: Update to HTMLPurifier 4.6.0

To: mahara-contributors@xxxxxxxxxxxxxxxxxxx
From: Kristina Hoeppner <1266976@xxxxxxxxxxxxxxxxxx>
Date: Mon, 24 Nov 2014 00:29:24 -0000
Reply-to: Bug 1266976 <1266976@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2013-7414

-- 
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contributors -- please ask on #mahara-dev or mahara.org forum before editing or unsubscribing it!
https://bugs.launchpad.net/bugs/1266976

Title:
  Update to HTMLPurifier 4.6.0

Status in Mahara ePortfolio:
  Fix Released
Status in Mahara 1.6 series:
  Fix Released
Status in Mahara 1.7 series:
  Fix Released
Status in Mahara 1.8 series:
  Fix Released

Bug description:
  HTMLPurifier 4.6.0 came out in November 30, and it's a security
  release. So, we should update our version to that, and since it's a
  security release we should also backport it to 1.6, 1.7, and 1.8.

  http://htmlpurifier.org/news/

To manage notifications about this bug go to:
https://bugs.launchpad.net/mahara/+bug/1266976/+subscriptions

References

[Bug 1266976] [NEW] Update to HTMLPurifier 4.6.0
From: Aaron Wells, 2014-01-08