Page MenuHomeMiraheze

Extension:Score disabled due to multiple security issues
Open, Stalled, LowPublic

Description

See https://phabricator.wikimedia.org/T257066 and https://git.io/JJTNO

This serves as a public task (after fix merged) to let people know why.

Could not execute LilyPond: /dev/null is not an executable file. Make sure $wgScoreLilyPond is set correctly

Is expected and will block rendering of new score content

Event Timeline

RhinosF1 lowered the priority of this task from High to Normal.Jul 3 2020, 17:30
RhinosF1 updated the task description. (Show Details)
RhinosF1 moved this task from Backlog to Deployed Extension Bugs on the Extensions board.
RhinosF1 changed the visibility from "Custom Policy" to "Public (No Login Required)".
RhinosF1 changed the edit policy from "Custom Policy" to "All Users".
RhinosF1 updated the task description. (Show Details)Jul 3 2020, 17:33

We should get more info on Monday.

Reception123 removed Reception123 as the assignee of this task.Jul 6 2020, 11:44
Reception123 added a subscriber: Reception123.

Score restricted in ManageWiki until it's resolved.

Score restricted in ManageWiki until it's resolved.

This is because we've been informed that further issues have been found with "no fix in sight".

MediaWiki was already pointing at /dev/null for the package so wasn't using it but the package has now been removed from production.

RhinosF1 changed the task status from Open to Stalled.EditedSat, Aug 1, 10:41
RhinosF1 lowered the priority of this task from Normal to Low.

Per above, will try and get some more info from Tim upstream later

RhinosF1 renamed this task from Extension:Score disabled due to security issue to Extension:Score disabled due to multiple security issues.Sat, Aug 1, 10:42