Debian: MediaWiki Important Info Disclosure DLA-4428-1, CVE-2025-67475
debian lts
December 30, 2025
Multiple security vulnerabilities were found in mediawiki, a website engine for collaborative work, which could lead to information disclosure, denial of service or privilege escal...
Summary
CVE-2025-67475
Square brackets in autocomment links were not always escaped.
CVE-2025-67478
Commas not separating values in RFC 2822 style headers were not
escaped, hence could be interpreted downstream as value separators.
CVE-2025-67479
Underscore and wide underscore were not always sanitized in `data-*`
attribute names.
CVE-2025-67480
ApiQueryRevisionsBase did not check for read permissions for the
target page.
CVE-2025-67481
Insufficient `style` attribute sanitation in client-side messages
(jqueryMsg).
As such attributes are difficult to sanitize properly (the logic
needs to be updated constantly as new CSS features are developed by
browser vendors) and their use cases in client-side messages are
extremely rare, they are no longer allowed.
If needed, `class` and `id` are still allowed, so these elements can
be targeted by normal stylesheets.
CVE-2025-67482
Scribunto extension: Segfault in unpack() with large integers
PREVIOUS 
NEXT Severity
important
Lowest
Low
Medium
High
Critical
Package: mediawiki
Version: 1:1.35.13-1+deb11u6
CVE ID: CVE-2025-67475 CVE-2025-67478 CVE-2025-67479 CVE-2025-67480
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!