Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 565
Alerts This Week
Warning Icon 1 565

Fedora 25 MoinMoin Security Update: Fixes For XSS And JavaScript Injection

fedora
Calendar Grey December 1, 2016
Scroller Fedora
Enhancements for MoinMoin within Fedora 25 tackle essential problems to improve security and performance.
Update to 1.9.9 (bugfix release for CVE-2016-7146, CVE-2016-7148)

Summary

MoinMoin is an advanced, easy to use and extensible WikiEngine with a large

community of users. Said in a few words, it is about collaboration on easily

editable web pages.

Update Information:

Update to 1.9.9 (bugfix release for CVE-2016-7146, CVE-2016-7148)

Change Log

References


[ 1 ] Bug #1394684 - CVE-2016-7146 CVE-2016-7148 moin: Javascript injection via page creation https://bugzilla.redhat.com/show_bug.cgi?id=1394684 [ 2 ] Bug #1395198 - CVE-2016-9119 moin: XSS in GUI editor's link dialogue https://bugzilla.redhat.com/show_bug.cgi?id=1395198

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade moin' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
important
Lowest
Low
Medium
High
Critical

Name: moin
Product: Fedora 25
Version: 1.9.9
Release: 1.fc25
Summary: MoinMoin is a WikiEngine to collaborate on easily editable web pages

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.