=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2008/VULN449
_____________________________________________________________________

DATE                      : 22/10/2008

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running TikiWiki CMS/Groupware
                                      versions prior to 2.2.

======================================================================
http://info.tikiwiki.org/tiki-read_article.php?articleId=41
______________________________________________________________________

TikiWiki CMS/Groupware 2.2 is released!
Posted by Marc Laporte on Oct 17, 2008 [04:01 pm UTC]

It is with great pleasure that the TikiWiki community releases TikiWiki
CMS/Groupware 2.2

Tiki 2.2 is a security & bugfix release of version 2.1

Updating to version 2.2 is highly recommended. In addition to several
minor fixes and enhancements, the update provides two undisclosed
security fixes.

Special thanks to Emanuele Gentili for reporting one of the security
issues.

This release contains multiple bug fixes and preventive security
corrections. No database update required by this release.

This release is available both as the full package and as incremental
updates to TikiWiki 2.0 or 2.1. The incremental packages require one of
those versions to already be installed, and include only the files
modified by the release.

Get TikiWiki 2.2 here:
https://sourceforge.net/project/showfiles.php?group_id=64258&package_id=266122external
link

changelogexternal link

More information on 2.0
http://doc.tikiwiki.org/TikiWiki+2.0external link
http://info.tikiwiki.org/art35

More information on 2.1
http://info.tikiwiki.org/art40

As always, please report any security issues to
security.tikiwiki.orgexternal link


Work is ongoing on TikiWiki 3.0, which will be released in April 2009.
The main focus of version 3.0 will be further enhancements to the user
interface, the admin interface, the theme system and built-in themes.
Additional goodies include webservices and enhancements to the plugins.

======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================