Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 515
Alerts This Week
Warning Icon 1 515

Debian Wheezy DSA-3059-1 Critical: Dokuwiki Access Control Flaws

debian
Calendar Grey October 29, 2014
Scroller Debian
Security flaws resolved in dokuwiki for Debian, focusing on access permissions and LDAP authentication concerns. Upgrade suggested.
Two vulnerabilities have been discovered in dokuwiki

Summary

Two vulnerabilities have been discovered in dokuwiki. Access control in
the media manager was insufficiently restricted and authentication could
be bypassed when using Active Directory for LDAP authentication.

For the stable distribution (wheezy), these problems have been fixed in
version 0.0.20120125b-2+deb7u1.

For the unstable distribution (sid), these problems have been fixed in
version 0.0.20140929.a-1.

We recommend that you upgrade your dokuwiki packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: dokuwiki
CVE ID: CVE-2014-8761 CVE-2014-8762 CVE-2014-8763 CVE-2014-8764

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.