All Fedora releases from 25 up to Rawhide ship dokuwiki 20150810a, which contains a bunch of security vulnerabilites: https://www.dokuwiki.org/changes https://src.fedoraproject.org/cgit/rpms/dokuwiki.git/log/ There's also been a bunch of (automated) bugs about some of there vulnerabilites, but it seems those have been ignored, and the package is actually unmaintained / de facto orphaned: https://bugzilla.redhat.com/buglist.cgi?bug_status=__open__&content=dokuwiki&list_id=8166066
This bug appears to have been reported against 'rawhide' during the Fedora 28 development cycle. Changing version to '28'.
The package was updated to latest upstream version (2018-04-22a) and built for Rawhide and F29: https://koji.fedoraproject.org/koji/buildinfo?buildID=1139333 https://koji.fedoraproject.org/koji/buildinfo?buildID=1139334 Successful builds have also been done for F28 and F27: https://koji.fedoraproject.org/koji/buildinfo?buildID=1139337 https://koji.fedoraproject.org/koji/buildinfo?buildID=1139339 I'm wondering whether these should be pushed as updates, or not. On one hand, there's the risk of breaking changes, on the other - the package has security flaws, so not updating it leaves its users vulnerable to potential attacks.