[Secure-testing-commits] r41743 - data/CVE
Chris Lamb
lamby at moszumanska.debian.org
Sun May 15 12:32:30 UTC 2016
Author: lamby
Date: 2016-05-15 12:32:30 +0000 (Sun, 15 May 2016)
New Revision: 41743
Modified:
data/CVE/list
Log:
Triage mediawiki for Wheezy LTS
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-15 12:26:42 UTC (rev 41742)
+++ data/CVE/list 2016-05-15 12:32:30 UTC (rev 41743)
@@ -31087,51 +31087,61 @@
CVE-2015-2931 (Incomplete blacklist vulnerability in includes/upload/UploadBase.php ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2932 (Incomplete blacklist vulnerability in MediaWiki before 1.19.24, 1.2x ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2933 (Cross-site scripting (XSS) vulnerability in the Html class in ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2934 (MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2935 (MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2936 (MediaWiki 1.24.x before 1.24.2, when using PBKDF2 for password ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2937 (MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2938 (Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.24, ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2939 (Cross-site scripting (XSS) vulnerability in the Scribunto extension ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2940 (Cross-site request forgery (CSRF) vulnerability in the CheckUser ...)
- mediawiki 1:1.19.20+dfsg-2.3
[squeeze] - mediawiki <end-of-life> (Not supported in Squeeze LTS)
+ [wheezy] - mediawiki <end-of-life> (Not supported in Wheezy LTS)
NOTE: https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-March/000175.html
NOTE: http://www.openwall.com/lists/oss-security/2015/04/01/1
CVE-2015-2941 (Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.24, ...)
More information about the Secure-testing-commits
mailing list