Bug 221958 (CVE-2007-0177)

Summary: CVE-2007-0177: Security vulnerability in MediaWiki
Product: [Fedora] Fedora Reporter: Roozbeh Pournader <roozbeh>
Component: mediawikiAssignee: Axel Thimm <Axel.Thimm>
Status: CLOSED CURRENTRELEASE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: urgent Docs Contact:
Priority: urgent    
Version: 6CC: fedora-security-list, fedora, roozbeh
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: 1_8_3-7 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-01-09 13:06:56 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Roozbeh Pournader 2007-01-09 09:54:53 UTC 
MediaWiki has just made a release with a security vulnerabiliy fixed:

http://lists.wikimedia.org/pipermail/mediawiki-announce/2007-January/000056.html

This means that FC6 and devel branches should be upgraded to 1.8.3.

The situation for FC5 is more complex, as it is shipping 1.5.8 which is
considered obsolete by upstream it seems. It may need to be upgraded to the
1.6.x or later series.
Comment 1 Axel Thimm 2007-01-09 12:17:41 UTC 
Building updated packages.
Comment 2 Axel Thimm 2007-01-09 13:06:56 UTC 
Packages are waiting in the needsign queue.
Comment 3 Ville Skyttä 2007-01-20 11:48:54 UTC 
For reference, this is CVE-2007-0177