1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5901-1] mediawiki security update

    From Moritz Muehlenhoff@21:1/5 to All on Sun Apr 13 14:40:03 2025
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5901-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff
    April 13, 2025 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : mediawiki
    CVE ID : CVE-2025-3469 CVE-2025-32696 CVE-2025-32697
    CVE-2025-32698 CVE-2025-32699 CVE-2025-32700

    Multiple security issues were discovered in MediaWiki, a website engine
    for collaborative work, which could result in information disclosure, cross-site scripting or restriction bypass.

    For the stable distribution (bookworm), these problems have been fixed in version 1:1.39.12-1~deb12u1.

    We recommend that you upgrade your mediawiki packages.

    For the detailed security status of mediawiki please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/mediawiki

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmf7rc4ACgkQEMKTtsN8 TjbHsxAAs4ZGN8Z3K9Yxue32mHoUOEY+RiT9EdDdgvwjVnY+VA5tk8lSl4vSk3B+ KnDYX3O5N8+cIGaMaLu20olLodfQe7dVxENOqtcPxTgodbSMjOXBCNp6sYYMW4Mi dFnrFyR6rKgESS4XPy6wKr3ozDG3tgfyzKJmtjsiZk58XRF7TG5vrZnGmbvmHKA3 4Dw+VFIGJLCvhEWUSlnMjM+m15Z8lr3f+Cnql2gR4k1/Zidnen7K6eQiLucIEdjv LlyRULXiwlYmll1YAGfwnGVmNziukN3VJ1b006AbyxnWEQUVSi++r2x5TM4UJAeZ 2/5gRadAO47AwZ+RMjOmVTnhsVtCZKcQg52pSg8GezONr6S54pKQkdORNmLoPStL mPALgEt8O88XJlo0FG+W1r2VMqeyUr60DoRP7IPdqNbpVRpLV1+sl0CsEpHhu+xj kllzm4zO91skkIR+wjmOM6scswJM3LQj7oMy/Ocwj3POMm6mJnJ2QOJsgkvvrB60 4gRzjpx8o8czquFcWccJMfblrkvx5gpRSBy/H5lPqf17q61Adwf8g8ifu4Vli1+J la2D9JBut7iMa/SMgKy29MH4dpBKT9EUJmI/A/YVa/qKALdXXjFh/g058s6SxcGn mtgr6y9CWA6vdK7gUl1fPcwcmrGw9FVxUAQ7J+A1tiArR7DC3Ro=
    =bvwb
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)