security update in Fedora 23 for python-wikitcms

Status: testing 2 years ago

This update contains a SECURITY fix for an issue with potentially serious consequences but very limited scope. If an administrator of a wiki you talked to using python-wikitcms were malicious, they could cause arbitrary code execution as the user running wikitcms. No-one besides a wiki administrator could do this, as it requires crafting the wiki's response to an edit request to include a malicious payload.

It also drops some now useless or unneeded code (due to changes in mediawiki and mwclient).

How to install

sudo dnf upgrade --enablerepo=updates-testing --advisory=FEDORA-2016-41820f4930

Comments 4

This update has been submitted for testing by adamwill.

adamwill edited this update.

New build(s):

  • python-wikitcms-2.1.10-1.fc23

Removed build(s):

  • python-wikitcms-2.1.9-1.fc23

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

Content Type
Test Gating
Submitted by
Update Type
Update Severity
stable threshold: 2
unstable threshold: -3
submitted 2 years ago
in testing 2 years ago
modified 2 years ago

Automated Test Results