Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 754
Alerts This Week
Warning Icon 1 754

Ubuntu 18.04/16.04 LTS: USN-4629-1 Moderate: MoinMoin Code Execution

ubuntu
Calendar Grey November 11, 2020
Dist Ubuntu Esm H88
Updates addressing various MoinMoin security flaws impacting Ubuntu 20.04 and 18.04 LTS installations, promoting a safer setup.
Several security issues were fixed in MoinMoin.

Summary

Several security issues were fixed in MoinMoin.

Software Description:

- moin: Collaborative hypertext environment

Details:

Michael Chapman discovered that MoinMoin incorrectly handled certain cache actions.

An attacker could possibly use this issue to execute arbitrary code.

(CVE-2020-25074)

Catarina Leite discovered that MoinMoin incorrectly handled certain SVG files.

An attacker could possibly use this issue to execute arbitrary code.

(CVE-2020-15275)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
  python-moinmoin                 1.9.9-1ubuntu1.2

Ubuntu 16.04 LTS:
  python-moinmoin                 1.9.8-1ubuntu1.16.04.3

In general, a standard system update will make all the necessary changes.

References

CVE-2020-15275, CVE-2020-25074

November 11, 2020

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.