7 matches found
Updated mediawiki packages fix security vulnerabilities
Updated mediawiki packages fix security vulnerabilities: Potential XSS in jQuery CVE-2019-11358. An account can be logged out without using a token CSRF CVE-2019-12466. A spammer can use Special:ChangeEmail to send out spam with no rate limiting or ability to block them CVE-2019-12467. Directly...
MediaWiki >= 1.23.0, <= 1.32.1 Information Disclosure Vulnerability - Linux
MediaWiki is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MediaWiki >= 1.23.0, <= 1.32.1 Information Disclosure Vulnerability - Windows
MediaWiki is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-12474
Wikimedia MediaWiki 1.23.0 through 1.32.1 has an information leak. Privileged API responses that include whether a recent change has been patrolled may be cached publicly. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6...
CVE-2019-12474
CVE-2019-12474 affects Wikimedia MediaWiki 1.23.0 through 1.32.1. The issue is an information leak where privileged API responses that reveal whether a recent change has been patrolled may be cached publicly. The underlying problem is caching of sensitive patrolling status in privileged API respo...
Security fix for the ALT Linux 9 package mediawiki version 1.32.2-alt1
1.32.2-alt1 built June 13, 2019 Vitaly Lipatov in task 231690 June 6, 2019 Vitaly Lipatov - new version 1.32.2 with rpmrb script - CVE-2019-12468, CVE-2019-12473, CVE-2019-12471 - CVE-2019-12472, CVE-2019-12474, CVE-2019-12467 - CVE-2019-12466, CVE-2019-12469, CVE-2019-12470 - CVE-2019-11358...
[SECURITY] [DSA 4460-1] mediawiki security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4460-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 12, 2019 https://www.debian.org/security/faq -...