[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DSA 5901-1] mediawiki security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5901-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
April 13, 2025                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : mediawiki
CVE ID         : CVE-2025-3469 CVE-2025-32696 CVE-2025-32697
                 CVE-2025-32698 CVE-2025-32699 CVE-2025-32700

Multiple security issues were discovered in MediaWiki, a website engine
for collaborative work, which could result in information disclosure,
cross-site scripting or restriction bypass.

For the stable distribution (bookworm), these problems have been fixed in
version 1:1.39.12-1~deb12u1.

We recommend that you upgrade your mediawiki packages.

For the detailed security status of mediawiki please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/mediawiki

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=bvwb
-----END PGP SIGNATURE-----
Reply to: