From 3ebd0e378fc3734e5a64934bea471963d4ee244f Mon Sep 17 00:00:00 2001
From: Tim Starling <tstarling@users.mediawiki.org>
Date: Thu, 5 Jan 2006 23:32:17 +0000
Subject: [PATCH] WMF vulnerability

---
 RELEASE-NOTES | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/RELEASE-NOTES b/RELEASE-NOTES
index 46c0f89c3a..f6b1dfa0ea 100644
--- a/RELEASE-NOTES
+++ b/RELEASE-NOTES
@@ -406,6 +406,11 @@ fully support the editing toolbar, but was found to be too confusing.
 * (bug 4453) fix for __TOC__ dollar-number breakage
 * Maintenance script to delete unused user accounts
 * (bug 4334) Add "watch" links to Special:Unwatchedpages
+* Added detection for WMF files (application/x-msmetafile), added this 
+  MIME type to the default blacklist. Prevented inline display of images
+  which are not of known image types. This is in response to
+  http://en.wikipedia.org/wiki/Windows_Metafile_vulnerability
+
 
 === Caveats ===
 
-- 
2.20.1