Update to MediaWiki 1.26.2

author: Pierre Schmitz <pierre@archlinux.de> 2015-12-21 06:22:43 +0100
committer: Pierre Schmitz <pierre@archlinux.de> 2015-12-21 06:22:43 +0100
commit: fa89acd685cb09cdbe1c64cbb721ec64975bbbc1 (patch)
tree: 9f88233923b8078787cd8b85b5d9ca18cf3245dd /RELEASE-NOTES-1.26
parent: 6d50fa2c1033bdb23fa4490b59c5648e78427157 (diff)
1 files changed, 8 insertions, 1 deletions
diff --git a/RELEASE-NOTES-1.26 b/RELEASE-NOTES-1.26
index 0adfbe20..e617f00b 100644
--- a/RELEASE-NOTES-1.26
+++ b/RELEASE-NOTES-1.26
@@ -1,6 +1,13 @@
 Security reminder: If you have PHP's register_globals option set, you must
 turn it off. MediaWiki will not work with it enabled.
 
+== MediaWiki 1.26.2 ==
+
+This is a maintenance release of the MediaWiki 1.26 branch.
+
+== Changes since 1.26.1 ==
+* (T121892) Fix fatal error on some Special pages, introduced in 1.26.1.
+
 == MediaWiki 1.26.1 ==
 
 This is a maintenance release of the MediaWiki 1.26 branch.
@@ -11,7 +18,7 @@ This is a maintenance release of the MediaWiki 1.26 branch.
   Configuration values such as "http://my.wiki.com/wiki/$1" are fine, as are
   "/wiki/$1". A value such as "$1" or "wiki/$1" is not and will now throw an
   error.
-* (T119309) SECURITY: Use hash_equals() for edit token comparison
+* (T119309) SECURITY: Use hash_compare() for edit token comparison
 * (T118032) SECURITY: Don't allow cURL to interpret POST parameters starting
   with '@' as file uploads
 * (T115522) SECURITY: Passwords generated by User::randomPassword() can no
author	Pierre Schmitz <pierre@archlinux.de>	2015-12-21 06:22:43 +0100
committer	Pierre Schmitz <pierre@archlinux.de>	2015-12-21 06:22:43 +0100
commit	fa89acd685cb09cdbe1c64cbb721ec64975bbbc1 (patch)
tree	9f88233923b8078787cd8b85b5d9ca18cf3245dd /RELEASE-NOTES-1.26
parent	6d50fa2c1033bdb23fa4490b59c5648e78427157 (diff)