Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 530
Alerts This Week
Warning Icon 1 530

Debian DSA-4979-1 Moderate: MediaWiki XSS and DoS Security Issues

debian
Calendar Grey October 1, 2021
Debian Logo
Several vulnerabilities discovered in MediaWiki pose risks for XSS, DoS, and bypass of restrictions. Users are recommended to upgrade.
Multiple security issues were found in MediaWiki, a website engine for collaborative work, which could result in cross-site scripting, denial of service and a bypass of restriction...

Summary

Multiple security issues were found in MediaWiki, a website engine for
collaborative work, which could result in cross-site scripting,
denial of service and a bypass of restrictions in the "Replace Text"
extension.

For the oldstable distribution (buster), these problems have been fixed
in version 1:1.31.16-1~deb10u1.

For the stable distribution (bullseye), these problems have been fixed in
version 1:1.35.4-1~deb11u1.

We recommend that you upgrade your mediawiki packages.

For the detailed security status of mediawiki please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/mediawiki

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Package: mediawiki
CVE ID: CVE-2021-35197 CVE-2021-41798 CVE-2021-41799 CVE-2021-41800

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.