[Git][security-tracker-team/security-tracker][master] auto-nfu: Extend Mediawiki rule
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Jan 8 08:05:29 GMT 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5d2cba8b by Moritz Muehlenhoff at 2026-01-08T09:05:07+01:00
auto-nfu: Extend Mediawiki rule
- - - - -
2 changed files:
- data/CVE/list
- data/packages/nfu.yaml
Changes:
=====================================
data/CVE/list
=====================================
@@ -76,11 +76,11 @@ CVE-2026-20027 (Multiple Cisco products are affected by a vulnerability in the p
CVE-2026-20026 (Multiple Cisco products are affected by a vulnerability in the pr ...)
TODO: check
CVE-2026-0670 (Improper Neutralization of Input During Web Page Generation (XSS or 'C ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extensions/skins not packaged in Debian
CVE-2026-0669 (Improper Limitation of a Pathname to a Restricted Directory ('Path Tra ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extensions/skins not packaged in Debian
CVE-2026-0668 (Inefficient Regular Expression Complexity vulnerability in Wikimedia F ...)
- TODO: check
+ NOT-FOR-US: MediaWiki extensions/skins not packaged in Debian
CVE-2026-0618 (Cross-site Scripting vulnerability in Devolutions PowerShell Universal ...)
NOT-FOR-US: Devolutions
CVE-2025-6225 (Kieback&Peter Neutrino-GLT product is used for building management. It ...)
=====================================
data/packages/nfu.yaml
=====================================
@@ -627,12 +627,15 @@
- product: MediaWiki GlobalBlocking extension
- product: MediaWiki PageForms extension
- product: MediaWiki WatchAnalytics extension
+ - product: MediaWiki - CSS extension
- product: Mediawiki - ExternalGuidance
- product: Mediawiki - LanguageSelector Extension
- product: Mediawiki - LastModified Extension
- product: Mediawiki - Lockdown Extension
- product: Mediawiki - PageTriage Extension
+ - product: MediaWiki - ProofreadPage Extension
- product: Mediawiki - Translate Extension
+ - product: MediaWiki - VisualData Extension
- product: Mediawiki - WikiLambda Extension
- product: Mediawiki - WikiLove Extension
- product: Mediawiki - Wikistories
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d2cba8bdb36d44e7f2a211c0b1775e26fed56ff
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5d2cba8bdb36d44e7f2a211c0b1775e26fed56ff
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260108/cb9ce3f1/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list