1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5957-1] mediawiki security update

    From Moritz Muehlenhoff@1:229/2 to All on Thu Jul 3 20:30:02 2025
    From: [email protected]

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5957-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff
    July 03, 2025 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : mediawiki
    CVE ID : CVE-2025-6590 CVE-2025-6591 CVE-2025-6593 CVE-2025-6594
    CVE-2025-6595 CVE-2025-6597 CVE-2025-6926 CVE-2025-32072

    Multiple security issues were discovered in MediaWiki, a website engine
    for collaborative work, which could result in cross-site scripting,
    information disclosure, HTML injection or incorrect tracking of
    authentication events.

    For the stable distribution (bookworm), these problems have been fixed in version 1:1.39.13-1~deb12u1.

    We recommend that you upgrade your mediawiki packages.

    For the detailed security status of mediawiki please refer to
    its security tracker page at: https://security-tracker.debian.org/tracker/mediawiki

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: [email protected]
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmhmyeYACgkQEMKTtsN8 TjaYDRAAn/OpLPXuX5gBPgAthnShmalwGY403TzJKeXaj3TmckdEoF2c+DaKUyIr VCXpHcawQ1PM/+SJnQTZhrreTgB7s19O1qRTcBVvAEoEqcdzWlGMlw7LxYcwmals jGP6tNEnNP4BLDqOWUi0F2DVwttS/vsxqsKfTPUit+Qi5RtLfN3dZ3yjNFTPIBHG SGSi5l6afEmMx/5tSImNXcRevG2SdlYlAnxB53UNvHtfZCadB8PzOVufvXdpKbEc Z/xhH8bEePLmdHrfSa7moEmSGcCOk6OHO27PnOiQgLBc7nF8Ygky6oawGx1P5tXg +uo/M8gUh2bcQ9QoUHp6HM8A5ha2XT6nK2qHxT+XsqczjXEq3Vsncp2shWjeWzKq X6ybGMrV4bBXMXaFnivTikWOI+wi13aZjO/BPlOD9vYXKZ4ZodgPCB1a0FEv7wrt oOsfv4VyEndweDfkcFHsEZIXmF7+cYv1PRqNd6Kav22TCiMY9mK/1twLbOD8G7FW zrzQwt6ZGv6MhxSvv0tMAj+7L/DSl1k6jCxqAeECPXtzsafRmeXaFNwLATp06Ohc K6PDXOxBdCpq2q4Dwr1UaKwLDMeJ/G8+Pb1VgJpXAH+8SjMaA3REyiFQhMd06gum KZ2rujzvILqlumL18rwcbn66PRSTtk57RZAGJ08evA7bTqyQm9k=
    =6Y59
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)