logo
DATABASE RESOURCES PRICING ABOUT US

Debian Security Advisory DSA 3011-1 (mediawiki - security update)

Description

It was discovered that MediaWiki, a website engine for collaborative work, is vulnerable to JSONP injection in Flash (CVE-2014-5241) and clickjacking between OutputPage and ParserOutput (CVE-2014-5243 ). The vulnerabilities are addressed by upgrading MediaWiki to the new upstream version 1.19.18, which includes additional changes.


Related