stable

mediawiki-1.38.5-1.fc37

FEDORA-2023-30a7a812f0 created by mooninite 11 months ago for Fedora 37

https://www.mediawiki.org/wiki/Release_notes/1.38

https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/UEMW64LVEH3BEXCJV43CVS6XPYURKWU3/

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-30a7a812f0

This update has been submitted for testing by mooninite.

11 months ago

This update's test gating status has been changed to 'ignored'.

11 months ago

This update has been pushed to testing.

11 months ago

This update has been submitted for stable by bodhi.

11 months ago

This update has been pushed to stable.

11 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Builds
1
mediawiki-1.38.5-1.fc37
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
11 months ago
in testing
11 months ago
in stable
11 months ago
approved
11 months ago
BZ#2156317 CVE-2021-44854 mediawiki: Rest API incorrectly publicly caches results from private wikis [fedora-all]
0
0
BZ#2156319 CVE-2021-44855 mediawiki: Blind Stored XSS via Upload Image via URL [fedora-all]
0
0
BZ#2156327 CVE-2021-44856 mediawiki: Title blocked in AbuseFilter can be created via Special:ChangeContentModel due to the mishandling of EditFilterMergedContent hook return value [fedora-all]
0
0
BZ#2156330 CVE-2022-41765 mediawiki: HTMLUserTextField exposes existence of hidden users [fedora-all]
0
0
BZ#2156332 CVE-2022-41767 mediawiki: reassignEdits doesn't update results in an IP range check on Special:Contributions [fedora-all]
0
0
BZ#2160626 CVE-2022-47927 mediawiki: sqlite information leak [fedora-all]
0
0
BZ#2161176 CVE-2023-22945 mediawiki: GrowthExperiments growthmanagementorlist API allows blocked users to enroll as mentors [fedora-all]
0
0
BZ#2161180 CVE-2023-22911 mediawiki: XSS in widget placement [fedora-all]
0
0
BZ#2161187 CVE-2023-22909 mediawiki: Remote DoS [fedora-all]
0
0
mediawiki-1.38.5-1.fc37

Automated Test Results

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.2.2 on bodhi-web-92-4242t.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy