221958 – (CVE-2007-0177) CVE-2007-0177: Security vulnerability in MediaWiki

Bug 221958 (CVE-2007-0177) - CVE-2007-0177: Security vulnerability in MediaWiki

Summary: CVE-2007-0177: Security vulnerability in MediaWiki

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	CVE-2007-0177
Product:	Fedora
Classification:	Fedora
Component:	mediawiki
Sub Component:
Version:	6
Hardware:	All
OS:	Linux
Priority:	urgent
Severity:	urgent
Target Milestone:	---
Assignee:	Axel Thimm
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2007-01-09 09:54 UTC by Roozbeh Pournader
Modified:	2007-11-30 22:11 UTC (History)
CC List:	3 users (show)
Fixed In Version:	1_8_3-7
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2007-01-09 13:06:56 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Roozbeh Pournader 2007-01-09 09:54:53 UTC

MediaWiki has just made a release with a security vulnerabiliy fixed:

http://lists.wikimedia.org/pipermail/mediawiki-announce/2007-January/000056.html

This means that FC6 and devel branches should be upgraded to 1.8.3.

The situation for FC5 is more complex, as it is shipping 1.5.8 which is
considered obsolete by upstream it seems. It may need to be upgraded to the
1.6.x or later series.

Comment 1 Axel Thimm 2007-01-09 12:17:41 UTC

Building updated packages.

Comment 2 Axel Thimm 2007-01-09 13:06:56 UTC

Packages are waiting in the needsign queue.

Comment 3 Ville Skyttä 2007-01-20 11:48:54 UTC

For reference, this is CVE-2007-0177

Note You need to log in before you can comment on or make changes to this bug.