{"update": {"autokarma": true, "autotime": true, "stable_karma": 3, "stable_days": 7, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "https://www.mediawiki.org/wiki/Release_notes/1.38\n\nhttps://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/UEMW64LVEH3BEXCJV43CVS6XPYURKWU3/", "type": "security", "status": "stable", "request": null, "severity": "medium", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2023-01-18 18:15:59", "date_modified": null, "date_approved": "2023-01-26 23:58:47", "date_testing": "2023-01-19 23:58:44", "date_stable": "2023-01-27 08:54:44", "alias": "FEDORA-2023-30a7a812f0", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2023-01-27 08:54:44", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2023-30a7a812f0", "title": "mediawiki-1.38.5-1.fc37", "version_hash": "b093e0dfde508bfd3074147b5683187d70f1280f", "release": {"name": "F37", "long_name": "Fedora 37", "version": "37", "id_prefix": "FEDORA", "branch": "f37", "dist_tag": "f37", "stable_tag": "f37-updates", "testing_tag": "f37-updates-testing", "candidate_tag": "f37-updates-candidate", "pending_signing_tag": "f37-signing-pending", "pending_testing_tag": "f37-updates-testing-pending", "pending_stable_tag": "f37-updates-pending", "override_tag": "f37-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": "2023-12-05", "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "mooninite", "email": "mike@cchtml.com", "id": 457, "avatar": "https://seccdn.libravatar.org/avatar/8b3c41993362b402769daf7b9e159cd28a40b2552f96c93bba03f32d4d68d127?s=24&d=retro", "openid": "mooninite.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by mooninite. ", "timestamp": "2023-01-18 18:15:59", "update_id": 474271, "user_id": 91, "id": 2849732, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2023-01-18 18:16:00", "update_id": 474271, "user_id": 91, "id": 2849734, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2023-01-20 00:00:22", "update_id": 474271, "user_id": 91, "id": 2850910, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2023-01-26 23:58:47", "update_id": 474271, "user_id": 91, "id": 2867905, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2023-01-27 08:56:35", "update_id": 474271, "user_id": 91, "id": 2878147, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "mediawiki-1.38.5-1.fc37", "signed": true, "release_id": 62, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 2156317, "title": "CVE-2021-44854 mediawiki: Rest API incorrectly publicly caches results from private wikis [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2156319, "title": "CVE-2021-44855 mediawiki: Blind Stored XSS via Upload Image via URL [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2156327, "title": "CVE-2021-44856 mediawiki: Title blocked in AbuseFilter can be created via Special:ChangeContentModel due to the mishandling of EditFilterMergedContent hook return value [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2156330, "title": "CVE-2022-41765 mediawiki: HTMLUserTextField exposes existence of hidden users [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2156332, "title": "CVE-2022-41767 mediawiki: reassignEdits doesn't update results in an IP range check on Special:Contributions [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2160626, "title": "CVE-2022-47927 mediawiki: sqlite information leak [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2161176, "title": "CVE-2023-22945 mediawiki: GrowthExperiments growthmanagementorlist API allows blocked users to enroll as mentors [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2161180, "title": "CVE-2023-22911 mediawiki: XSS in widget placement [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2161187, "title": "CVE-2023-22909 mediawiki: Remote DoS [fedora-all]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-2023-30a7a812f0", "karma": 0, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}